Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    08e81f1a7b0c4597333e034fd8b4fa00_NeikiAnalytics

  • Size

    208KB

  • Sample

    240511-qsaxjacf78

  • MD5

    08e81f1a7b0c4597333e034fd8b4fa00

  • SHA1

    fed63bceac35bcc2959a1e5a1fa724c3da01de1a

  • SHA256

    3aa4f26ed30cbad4fb4c2a902bcdccd666935bdbae742373af60244ea36f501d

  • SHA512

    f9e4802ec8d46660e1c2a808bde9bb669a64f84639834a4c27b656b2f623f66bb564b1a6ab974e772d53e8a2f07a3a2a4fd133e325d11ff2b43944ec8e1e55f9

  • SSDEEP

    3072:BdEUfKj8BYbDiC1ZTK7sxtLUIGWCQPCBCkjTS4V4JqaEu3EwrtJgYCA2SWE:BUSiZTK40OOOu47rTJCA2SWE

Malware Config

Targets

    • Target

      08e81f1a7b0c4597333e034fd8b4fa00_NeikiAnalytics

    • Size

      208KB

    • MD5

      08e81f1a7b0c4597333e034fd8b4fa00

    • SHA1

      fed63bceac35bcc2959a1e5a1fa724c3da01de1a

    • SHA256

      3aa4f26ed30cbad4fb4c2a902bcdccd666935bdbae742373af60244ea36f501d

    • SHA512

      f9e4802ec8d46660e1c2a808bde9bb669a64f84639834a4c27b656b2f623f66bb564b1a6ab974e772d53e8a2f07a3a2a4fd133e325d11ff2b43944ec8e1e55f9

    • SSDEEP

      3072:BdEUfKj8BYbDiC1ZTK7sxtLUIGWCQPCBCkjTS4V4JqaEu3EwrtJgYCA2SWE:BUSiZTK40OOOu47rTJCA2SWE

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks