Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6071df3a321420022524cb07893ee1cf.exe

  • Size

    1.2MB

  • Sample

    231230-xhpfhadfc8

  • MD5

    6071df3a321420022524cb07893ee1cf

  • SHA1

    ce052da87a7c593f96ce29eea821ed29138645f6

  • SHA256

    80d2cbf160d6b739052872bd8d549dc709500333728111f99d9b69e876f68b0e

  • SHA512

    f0badf794aa465afcce9a6fea9fad1370dc8c0be4f35616f9429530b6a8c7051952158ceb53527784fc112b4f18b143a6807ee039a7f727fca2398172e9d60ba

  • SSDEEP

    24576:a5m0BmmvFimm0MTP7hm0BmmvFimm0SGT8P402fo06YE1+91vK3xDWGk4A:kiLiZGT8P4Zfo06h1+91vOaGBA

Malware Config

Targets

    • Target

      6071df3a321420022524cb07893ee1cf.exe

    • Size

      1.2MB

    • MD5

      6071df3a321420022524cb07893ee1cf

    • SHA1

      ce052da87a7c593f96ce29eea821ed29138645f6

    • SHA256

      80d2cbf160d6b739052872bd8d549dc709500333728111f99d9b69e876f68b0e

    • SHA512

      f0badf794aa465afcce9a6fea9fad1370dc8c0be4f35616f9429530b6a8c7051952158ceb53527784fc112b4f18b143a6807ee039a7f727fca2398172e9d60ba

    • SSDEEP

      24576:a5m0BmmvFimm0MTP7hm0BmmvFimm0SGT8P402fo06YE1+91vK3xDWGk4A:kiLiZGT8P4Zfo06h1+91vOaGBA

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks