Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d8f9c855b8df1c9893ed2404c0e39910_NEIKI

  • Size

    226KB

  • Sample

    240509-dk447afa8w

  • MD5

    d8f9c855b8df1c9893ed2404c0e39910

  • SHA1

    aadb5647c911fa07664d6f0025a01e57c708eea9

  • SHA256

    b2c334cb46e35d1e2689171940949508886267384337006c089e5870b44130a4

  • SHA512

    86864fb7338f52d1b0a8cdbb30bf8fa5746957f5db5f066913f1c8b5ca2f787448ea0e0e67f14d34837783bd297fed754039a437c40a193ce305de4e6fa43d53

  • SSDEEP

    6144:jvNzUzbF68H3S8+b6uyptXIi9u/mp8saZHRD4v4M84Z9YkF/GeHNHyORQdcIKtt:jvw68XS8+d8HamysaZHRD44M3ZzF/Gen

Malware Config

Targets

    • Target

      d8f9c855b8df1c9893ed2404c0e39910_NEIKI

    • Size

      226KB

    • MD5

      d8f9c855b8df1c9893ed2404c0e39910

    • SHA1

      aadb5647c911fa07664d6f0025a01e57c708eea9

    • SHA256

      b2c334cb46e35d1e2689171940949508886267384337006c089e5870b44130a4

    • SHA512

      86864fb7338f52d1b0a8cdbb30bf8fa5746957f5db5f066913f1c8b5ca2f787448ea0e0e67f14d34837783bd297fed754039a437c40a193ce305de4e6fa43d53

    • SSDEEP

      6144:jvNzUzbF68H3S8+b6uyptXIi9u/mp8saZHRD4v4M84Z9YkF/GeHNHyORQdcIKtt:jvw68XS8+d8HamysaZHRD44M3ZzF/Gen

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Modifies visibility of file extensions in Explorer

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks