Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a9bebac977bbcc1866b9503aed7d0f80_NeikiAnalytics

  • Size

    384KB

  • Sample

    240513-j9r4taeb4x

  • MD5

    a9bebac977bbcc1866b9503aed7d0f80

  • SHA1

    d601f67fea4dd834171617b566f25bbbd885e513

  • SHA256

    d36f32e87d7a50560ee863eeb11c0305d36f0fe85dc6b951d78c791f866e223d

  • SHA512

    dfa53ecd2503505e482b3e6f3dbf82eb63ac8390386957aa6d5ad9d1653717e8c99e6b0bedfba0e086fb8e2667c38ef97822350e2bd053fa1a6711d86359403d

  • SSDEEP

    6144:Qp8azTYaT15f7o+STYaT15fsnoW6B1S6Kvw2fV9rU+Lw6gYviIajJsnIfvJPNF7:QHTYapJoTYapbt1S3vwyjrU+LKYAJII5

Malware Config

Targets

    • Target

      a9bebac977bbcc1866b9503aed7d0f80_NeikiAnalytics

    • Size

      384KB

    • MD5

      a9bebac977bbcc1866b9503aed7d0f80

    • SHA1

      d601f67fea4dd834171617b566f25bbbd885e513

    • SHA256

      d36f32e87d7a50560ee863eeb11c0305d36f0fe85dc6b951d78c791f866e223d

    • SHA512

      dfa53ecd2503505e482b3e6f3dbf82eb63ac8390386957aa6d5ad9d1653717e8c99e6b0bedfba0e086fb8e2667c38ef97822350e2bd053fa1a6711d86359403d

    • SSDEEP

      6144:Qp8azTYaT15f7o+STYaT15fsnoW6B1S6Kvw2fV9rU+Lw6gYviIajJsnIfvJPNF7:QHTYapJoTYapbt1S3vwyjrU+LKYAJII5

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks