Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

40aa049b1b...cs.exe

windows7-x64

10

40aa049b1b...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    40aa049b1be8f9824f4411367a6b9ff0_NeikiAnalytics

  • Size

    844KB

  • Sample

    240515-1wvffseb6x

  • MD5

    40aa049b1be8f9824f4411367a6b9ff0

  • SHA1

    695e92e56ed592891e1bbec2e47a1154a5d13938

  • SHA256

    e7c3e57ef144e9098b657bfaaaf668fb996688e78a250ab945a440bdf4b8859d

  • SHA512

    731ce01e37d3d2faa94c9784559d193719b3cbcd180a37129fb07fbec18575843f7d0d57d65219eac6e122028010d4e835c0711a7838caaf0b0495fb1503445c

  • SSDEEP

    24576:AzqH5W3TnbQihMpQnqrdX72LbY6x46uR/qYglMi:uqH5W3TbQihw+cdX2x46uhqllMi

Score
10/10
berbewbackdoordropperpersistencetrojan

Malware Config

Targets

    • Target

      40aa049b1be8f9824f4411367a6b9ff0_NeikiAnalytics

    • Size

      844KB

    • MD5

      40aa049b1be8f9824f4411367a6b9ff0

    • SHA1

      695e92e56ed592891e1bbec2e47a1154a5d13938

    • SHA256

      e7c3e57ef144e9098b657bfaaaf668fb996688e78a250ab945a440bdf4b8859d

    • SHA512

      731ce01e37d3d2faa94c9784559d193719b3cbcd180a37129fb07fbec18575843f7d0d57d65219eac6e122028010d4e835c0711a7838caaf0b0495fb1503445c

    • SSDEEP

      24576:AzqH5W3TnbQihMpQnqrdX72LbY6x46uR/qYglMi:uqH5W3TbQihw+cdX2x46uhqllMi

    Score
    10/10
    backdoordropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

      backdoortrojandropper

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks