Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b42ca2ff01a96a8c749686483db8d3fa.exe

  • Size

    448KB

  • Sample

    240111-vzwvsscfhl

  • MD5

    b42ca2ff01a96a8c749686483db8d3fa

  • SHA1

    5a2469ee10869c299d681316705b6bb79d8ef01c

  • SHA256

    cace3c18bba03732bbde33bac1f8afaf8f4f3de2ea19e36c29e5b8669b6baa31

  • SHA512

    53112d8678d3db2087ad90286df1f9db291731da12b07d131710f54c203624e268c63ad2eb25e40adbdc671c0e2e3d0801a01ccad2f381914005f4d38ad3225a

  • SSDEEP

    6144:bzOI68iByVo7aOl3BzrUmKyIxLfYeOO9UmKyIxLiajOEjXP3HBsR4/0ePGSzxC:bzOuiBym7aOlxzr3cOK3TajRfXFMKNxC

Malware Config

Targets

    • Target

      b42ca2ff01a96a8c749686483db8d3fa.exe

    • Size

      448KB

    • MD5

      b42ca2ff01a96a8c749686483db8d3fa

    • SHA1

      5a2469ee10869c299d681316705b6bb79d8ef01c

    • SHA256

      cace3c18bba03732bbde33bac1f8afaf8f4f3de2ea19e36c29e5b8669b6baa31

    • SHA512

      53112d8678d3db2087ad90286df1f9db291731da12b07d131710f54c203624e268c63ad2eb25e40adbdc671c0e2e3d0801a01ccad2f381914005f4d38ad3225a

    • SSDEEP

      6144:bzOI68iByVo7aOl3BzrUmKyIxLfYeOO9UmKyIxLiajOEjXP3HBsR4/0ePGSzxC:bzOuiBym7aOlxzr3cOK3TajRfXFMKNxC

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks