Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    18de34aa311f3940d363083dba3ad113_NEIKI

  • Size

    94KB

  • Sample

    240509-nwmpdsfg31

  • MD5

    18de34aa311f3940d363083dba3ad113

  • SHA1

    d483accc3cb0acef4237c64a456b7e0dc6c37d9b

  • SHA256

    6d8000709ae5f06cdb103ae397d7590095dbf95c77a22e7754915fb897141aea

  • SHA512

    e8964709db6f7cfda3b221b813c20bd8fbf5a2e30b8670c24703c86651d65f4bb50157dec4fbb46a144a45485caafb5ab7322d09e40b8fe7b934605d78d98242

  • SSDEEP

    1536:/YS6QnOAiGU+2V80XOGk1XW0LPHq39KUIC0uGmVJHQj1BEsCOyiKbZ9rQJg:VnOjVP+XW0jH6KU90uGimj1ieybvrx

Malware Config

Targets

    • Target

      18de34aa311f3940d363083dba3ad113_NEIKI

    • Size

      94KB

    • MD5

      18de34aa311f3940d363083dba3ad113

    • SHA1

      d483accc3cb0acef4237c64a456b7e0dc6c37d9b

    • SHA256

      6d8000709ae5f06cdb103ae397d7590095dbf95c77a22e7754915fb897141aea

    • SHA512

      e8964709db6f7cfda3b221b813c20bd8fbf5a2e30b8670c24703c86651d65f4bb50157dec4fbb46a144a45485caafb5ab7322d09e40b8fe7b934605d78d98242

    • SSDEEP

      1536:/YS6QnOAiGU+2V80XOGk1XW0LPHq39KUIC0uGmVJHQj1BEsCOyiKbZ9rQJg:VnOjVP+XW0jH6KU90uGimj1ieybvrx

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks