Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    525183a8bb98d789955ff599208fce9d8b7ad796aea9de44bcb8bd6c859d6f84N

  • Size

    59KB

  • Sample

    241005-m4s1ps1cjm

  • MD5

    c11f4615c781f9cc89f43b90484860b0

  • SHA1

    2f846c6ddb44157ec3ac20c19f332930a986bdff

  • SHA256

    525183a8bb98d789955ff599208fce9d8b7ad796aea9de44bcb8bd6c859d6f84

  • SHA512

    8326746489ab5befec04d44013fc104b25689888157859f818157be2f68165c01ae7b2acfde547f9e2c50511df7f9dc9dc5faa906b0663fb8a6570f56c083bd1

  • SSDEEP

    1536:ntsZM+pwM5WQn/E37Y77KKKtg8vNCyVs:tsZM+y8WQn/yg8oes

Malware Config

Targets

    • Target

      525183a8bb98d789955ff599208fce9d8b7ad796aea9de44bcb8bd6c859d6f84N

    • Size

      59KB

    • MD5

      c11f4615c781f9cc89f43b90484860b0

    • SHA1

      2f846c6ddb44157ec3ac20c19f332930a986bdff

    • SHA256

      525183a8bb98d789955ff599208fce9d8b7ad796aea9de44bcb8bd6c859d6f84

    • SHA512

      8326746489ab5befec04d44013fc104b25689888157859f818157be2f68165c01ae7b2acfde547f9e2c50511df7f9dc9dc5faa906b0663fb8a6570f56c083bd1

    • SSDEEP

      1536:ntsZM+pwM5WQn/E37Y77KKKtg8vNCyVs:tsZM+y8WQn/yg8oes

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Berbew

      Berbew is a backdoor written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks