Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    099b28b1ebd9cd02ffae5a8099339d94.exe

  • Size

    768KB

  • Sample

    240106-zqcssahdf7

  • MD5

    099b28b1ebd9cd02ffae5a8099339d94

  • SHA1

    51b5a739f561d1e9c8ee74a4b7c6ffc0ba4f3fb2

  • SHA256

    ee23179bb6e4cf8eff158869cf8a0951e107cea715078570a3cea2a43a2ed904

  • SHA512

    add9b02ae72f0c2e1f6e9bb244a70b45a0ba51c9fdce040528cafe4be1793d494d0554b33e6f9abe0af04f1930195eff79fa12fe54801638b862af286d668b14

  • SSDEEP

    12288:E5Czo5vv6IveDVqvQ6IvYvc6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC45:E5PFq5h3q5htaSHFaZRBEYyqmaf2qwiv

Malware Config

Targets

    • Target

      099b28b1ebd9cd02ffae5a8099339d94.exe

    • Size

      768KB

    • MD5

      099b28b1ebd9cd02ffae5a8099339d94

    • SHA1

      51b5a739f561d1e9c8ee74a4b7c6ffc0ba4f3fb2

    • SHA256

      ee23179bb6e4cf8eff158869cf8a0951e107cea715078570a3cea2a43a2ed904

    • SHA512

      add9b02ae72f0c2e1f6e9bb244a70b45a0ba51c9fdce040528cafe4be1793d494d0554b33e6f9abe0af04f1930195eff79fa12fe54801638b862af286d668b14

    • SSDEEP

      12288:E5Czo5vv6IveDVqvQ6IvYvc6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC45:E5PFq5h3q5htaSHFaZRBEYyqmaf2qwiv

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks