Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    367682d04104243b3af76bff772830b0_NeikiAnalytics

  • Size

    227KB

  • Sample

    240514-2agg5sbh32

  • MD5

    367682d04104243b3af76bff772830b0

  • SHA1

    a42f45e65272228fbc2bbc37128b23c74f4964ce

  • SHA256

    0888a036fe75556db7f2982c17756d32d1bb7f38eccf5824bfc716d8873adea3

  • SHA512

    3d0dc5df40fca20a6f67ae2295eed023366eb0ba5f53d45d93fccbdee0b37e9683782e6bc3e4a2c75457dc09164b72a74b5de0f148ec57f155a17d4416833f8d

  • SSDEEP

    3072:G2vhmXOANOcC4rZeyYpwoTRBmDRGGurhUXvBj2QE2HegPelTeIdI7jFHu:G0eCQsqm7U5j2QE2+g24Id2jFHu

Malware Config

Targets

    • Target

      367682d04104243b3af76bff772830b0_NeikiAnalytics

    • Size

      227KB

    • MD5

      367682d04104243b3af76bff772830b0

    • SHA1

      a42f45e65272228fbc2bbc37128b23c74f4964ce

    • SHA256

      0888a036fe75556db7f2982c17756d32d1bb7f38eccf5824bfc716d8873adea3

    • SHA512

      3d0dc5df40fca20a6f67ae2295eed023366eb0ba5f53d45d93fccbdee0b37e9683782e6bc3e4a2c75457dc09164b72a74b5de0f148ec57f155a17d4416833f8d

    • SSDEEP

      3072:G2vhmXOANOcC4rZeyYpwoTRBmDRGGurhUXvBj2QE2HegPelTeIdI7jFHu:G0eCQsqm7U5j2QE2+g24Id2jFHu

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks