Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    95accbf5dd59e5b7d7a26350cf2db100_NEIKI

  • Size

    1000KB

  • Sample

    240508-3bv8csfe45

  • MD5

    95accbf5dd59e5b7d7a26350cf2db100

  • SHA1

    d572f3d541f1599dfcf8064efffae9c34555faea

  • SHA256

    514fd8eba13d5ce0fb079bd7a1447ddc089a9756895dc1c9acdf00c4ba51fabe

  • SHA512

    f63bedf37bb0b103c8e3269e28ba6a7d552c34087047fde069630128769f87c59f353f92f7561993c9e93a20c89ab3aa76dc057f5de7d0dd31f79fcc58e6a696

  • SSDEEP

    24576:VyAqtHBFLPj3btStuv40arYciakobDlsa2VIGqPWYvyAN58WJm8MoC9Dq9o7:mtHBFLPj3JStuv40ar7iarbDlsa2VIli

Malware Config

Targets

    • Target

      95accbf5dd59e5b7d7a26350cf2db100_NEIKI

    • Size

      1000KB

    • MD5

      95accbf5dd59e5b7d7a26350cf2db100

    • SHA1

      d572f3d541f1599dfcf8064efffae9c34555faea

    • SHA256

      514fd8eba13d5ce0fb079bd7a1447ddc089a9756895dc1c9acdf00c4ba51fabe

    • SHA512

      f63bedf37bb0b103c8e3269e28ba6a7d552c34087047fde069630128769f87c59f353f92f7561993c9e93a20c89ab3aa76dc057f5de7d0dd31f79fcc58e6a696

    • SSDEEP

      24576:VyAqtHBFLPj3btStuv40arYciakobDlsa2VIGqPWYvyAN58WJm8MoC9Dq9o7:mtHBFLPj3JStuv40ar7iarbDlsa2VIli

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks