Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

NEAS.1eff3...51.exe

windows7-x64

NEAS.1eff3...51.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.1eff36f2b953e2631ecf6fbc867ccd51.exe

  • Size

    96KB

  • Sample

    231112-wcyxbahf91

  • MD5

    1eff36f2b953e2631ecf6fbc867ccd51

  • SHA1

    de065cabe5cb603aed44ab9d3d189e30e3382b06

  • SHA256

    d57c59f5f03c472ef007e58d1e74c50aa7a60e9c462b3e09290ef98ccccf3c25

  • SHA512

    04fa819e75d33a1de3c61077f1bd66e0f57f4c08619956aced8ce7fdaabcdb83c5f7755cbdc070d8112d6ce9734bbe693644f0a02261a54279bece59a74115ad

  • SSDEEP

    1536:jGUO4HNVMX+QblsBLTuW1mX1nZ16S4XVcdZ2JVQBKoC/CKniTCvVAva61hLDneP+:jQ8VIblsBLTuUseS4XVqZ2fQkbn1vVAT

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.1eff36f2b953e2631ecf6fbc867ccd51.exe

    • Size

      96KB

    • MD5

      1eff36f2b953e2631ecf6fbc867ccd51

    • SHA1

      de065cabe5cb603aed44ab9d3d189e30e3382b06

    • SHA256

      d57c59f5f03c472ef007e58d1e74c50aa7a60e9c462b3e09290ef98ccccf3c25

    • SHA512

      04fa819e75d33a1de3c61077f1bd66e0f57f4c08619956aced8ce7fdaabcdb83c5f7755cbdc070d8112d6ce9734bbe693644f0a02261a54279bece59a74115ad

    • SSDEEP

      1536:jGUO4HNVMX+QblsBLTuW1mX1nZ16S4XVcdZ2JVQBKoC/CKniTCvVAva61hLDneP+:jQ8VIblsBLTuUseS4XVqZ2fQkbn1vVAT

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks