Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7dfb66cfb3edb03c72d1c72908db5a30_NeikiAnalytics

  • Size

    640KB

  • Sample

    240512-jfbvqsab69

  • MD5

    7dfb66cfb3edb03c72d1c72908db5a30

  • SHA1

    3e43d72e4cd59770b6e665c4fcd9191c9611acc0

  • SHA256

    01df3df89a6f7d6cdbe7854a470782fb9a62b43bfb2402ec9403d04a81efd2c4

  • SHA512

    445f8e6b5dfebd61ab7a500a98ae774253791837030919a20f9c93beb5e4c76a89b7bddf91f201b6cdcf4819f3dc8a8ef10ba7b50f86a141d2aa35be9304266d

  • SSDEEP

    12288:p6XludXHaINIVIIVy2oIvPKiK13fS2hEYM9RIPk:wX8dXHfNIVIIVy2jU13fS2hEYM9RIPk

Malware Config

Targets

    • Target

      7dfb66cfb3edb03c72d1c72908db5a30_NeikiAnalytics

    • Size

      640KB

    • MD5

      7dfb66cfb3edb03c72d1c72908db5a30

    • SHA1

      3e43d72e4cd59770b6e665c4fcd9191c9611acc0

    • SHA256

      01df3df89a6f7d6cdbe7854a470782fb9a62b43bfb2402ec9403d04a81efd2c4

    • SHA512

      445f8e6b5dfebd61ab7a500a98ae774253791837030919a20f9c93beb5e4c76a89b7bddf91f201b6cdcf4819f3dc8a8ef10ba7b50f86a141d2aa35be9304266d

    • SSDEEP

      12288:p6XludXHaINIVIIVy2oIvPKiK13fS2hEYM9RIPk:wX8dXHfNIVIIVy2jU13fS2hEYM9RIPk

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks