Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2512d4385e88b81fdffe82d7e38e95b0_NeikiAnalytics

  • Size

    192KB

  • Sample

    240509-3x9mwahf85

  • MD5

    2512d4385e88b81fdffe82d7e38e95b0

  • SHA1

    11bff0f6914b76390cf60765f23cd48ce8bb81b1

  • SHA256

    7792a28004f9aca52ee2a87bb545ea49f8adba95f8b7a5a6a2db68a7d29a36ce

  • SHA512

    e57797be0d03f44274555380e44941e5902e1837d2e01aac5398e947561ab13f3962c4b9ad64d6fa2ae2c1082fafc65aaa731b157446fe77bc03d00095e8de13

  • SSDEEP

    3072:FhOmTsF93UYfwC6GIoutrVCfMoh52waAyiJ8mqtbfUVKty16hDsI/tSvv:Fcm4FmowdHoS8fMoSVAHubPtyYxfe

Malware Config

Targets

    • Target

      2512d4385e88b81fdffe82d7e38e95b0_NeikiAnalytics

    • Size

      192KB

    • MD5

      2512d4385e88b81fdffe82d7e38e95b0

    • SHA1

      11bff0f6914b76390cf60765f23cd48ce8bb81b1

    • SHA256

      7792a28004f9aca52ee2a87bb545ea49f8adba95f8b7a5a6a2db68a7d29a36ce

    • SHA512

      e57797be0d03f44274555380e44941e5902e1837d2e01aac5398e947561ab13f3962c4b9ad64d6fa2ae2c1082fafc65aaa731b157446fe77bc03d00095e8de13

    • SSDEEP

      3072:FhOmTsF93UYfwC6GIoutrVCfMoh52waAyiJ8mqtbfUVKty16hDsI/tSvv:Fcm4FmowdHoS8fMoSVAHubPtyYxfe

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks