Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d8e03e6977ee1c628936d040f3feb45d.exe

  • Size

    565KB

  • Sample

    240105-sl7n2afgg7

  • MD5

    d8e03e6977ee1c628936d040f3feb45d

  • SHA1

    c938d80c8f6987827619475502abf0f624b3ca31

  • SHA256

    372057264e53caf4be707b1b0d1e9ba17bb99129e57f521e903cb4a442493888

  • SHA512

    92729e54661b2495d6909e2d515d2c9c10fa49267a2d3bb9e44880f2d53c5e565d16631a0c908bedfeb9a30721140c8ac2aa9b65a3dc5dece9d76b461dcf82b8

  • SSDEEP

    12288:xOh4tuFjAh//+zrWAIAqWim/+zrWAI5KF8OX:x3tuFjAh/mvFimm09OX

Malware Config

Targets

    • Target

      d8e03e6977ee1c628936d040f3feb45d.exe

    • Size

      565KB

    • MD5

      d8e03e6977ee1c628936d040f3feb45d

    • SHA1

      c938d80c8f6987827619475502abf0f624b3ca31

    • SHA256

      372057264e53caf4be707b1b0d1e9ba17bb99129e57f521e903cb4a442493888

    • SHA512

      92729e54661b2495d6909e2d515d2c9c10fa49267a2d3bb9e44880f2d53c5e565d16631a0c908bedfeb9a30721140c8ac2aa9b65a3dc5dece9d76b461dcf82b8

    • SSDEEP

      12288:xOh4tuFjAh//+zrWAIAqWim/+zrWAI5KF8OX:x3tuFjAh/mvFimm09OX

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks