Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    47c8f69fea8621a2be7b2335aa41a703.exe

  • Size

    768KB

  • Sample

    240517-rr4nwsbh54

  • MD5

    47c8f69fea8621a2be7b2335aa41a703

  • SHA1

    b38308d36a76d30264017fb33e19610aa2ab7867

  • SHA256

    234ebd0804598352e2c35326ec452008c56ad729fa8580bce7009292d7fece00

  • SHA512

    5e1f136a273687ee3293713c6a180811e32ec2f2b3cd0edd0e0cf94ae8fbe7137000f9acd0ebe927c234f007f0b930ba407876718b91ab8fead8a5448c8ba6ab

  • SSDEEP

    12288:rJ9vI6IveDVqvQ6IvYvc6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGJ:rkq5h3q5htaSHFaZRBEYyqmaf2qwiHPX

Malware Config

Targets

    • Target

      47c8f69fea8621a2be7b2335aa41a703.exe

    • Size

      768KB

    • MD5

      47c8f69fea8621a2be7b2335aa41a703

    • SHA1

      b38308d36a76d30264017fb33e19610aa2ab7867

    • SHA256

      234ebd0804598352e2c35326ec452008c56ad729fa8580bce7009292d7fece00

    • SHA512

      5e1f136a273687ee3293713c6a180811e32ec2f2b3cd0edd0e0cf94ae8fbe7137000f9acd0ebe927c234f007f0b930ba407876718b91ab8fead8a5448c8ba6ab

    • SSDEEP

      12288:rJ9vI6IveDVqvQ6IvYvc6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGJ:rkq5h3q5htaSHFaZRBEYyqmaf2qwiHPX

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks