Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    30b8d74f788f0aab82fc21af85c8a670_NeikiAnalytics

  • Size

    199KB

  • Sample

    240510-3sm83sbe97

  • MD5

    30b8d74f788f0aab82fc21af85c8a670

  • SHA1

    027ed1e05c07f3855e730a2d68affce0a2ddbfd3

  • SHA256

    c1a57c0f47aa9a9d7f6f76d653c4bd0828debce1f8ac51cbcaafd4d12258c833

  • SHA512

    caac60f159627aa2fe3d53a50c11b77536bb45ec2dcb48da382a174a867269963a64fe553050631e0a0907d9af552e433372a8fc8077823bb0bd933289df297b

  • SSDEEP

    6144:xpkcgw3y7SZSCZj81+jq4peBK034YOmFz1h:Acj3/ZSCG1+jheBbOmFxh

Malware Config

Targets

    • Target

      30b8d74f788f0aab82fc21af85c8a670_NeikiAnalytics

    • Size

      199KB

    • MD5

      30b8d74f788f0aab82fc21af85c8a670

    • SHA1

      027ed1e05c07f3855e730a2d68affce0a2ddbfd3

    • SHA256

      c1a57c0f47aa9a9d7f6f76d653c4bd0828debce1f8ac51cbcaafd4d12258c833

    • SHA512

      caac60f159627aa2fe3d53a50c11b77536bb45ec2dcb48da382a174a867269963a64fe553050631e0a0907d9af552e433372a8fc8077823bb0bd933289df297b

    • SSDEEP

      6144:xpkcgw3y7SZSCZj81+jq4peBK034YOmFz1h:Acj3/ZSCG1+jheBbOmFxh

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks