Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    53f6fbfb6637065817d179b3e54aae50_NeikiAnalytics

  • Size

    305KB

  • Sample

    240515-batjlahe76

  • MD5

    53f6fbfb6637065817d179b3e54aae50

  • SHA1

    949ac3fbe9f9b6f81d5c5c6c44b6fa778f8ddd9e

  • SHA256

    e75a066c704f38d1e32cd660fcf2283f4ae304a6a160d5c66b456c1a1c71f846

  • SHA512

    ab3b895f0907e88d22e802cbc445eb2b114f44db415b9c00c6cbb86dfe89e531f51704b7ab6b667308b8ad8f76acb1e3cd14ce360e8d773b75b140bfa1b8f12c

  • SSDEEP

    6144:Xdt+Sw0XTbnNxunXe8yhrtMsQBvli+RQFdq:Xdt+Sw0jLvAO8qRMsrOQF

Malware Config

Targets

    • Target

      53f6fbfb6637065817d179b3e54aae50_NeikiAnalytics

    • Size

      305KB

    • MD5

      53f6fbfb6637065817d179b3e54aae50

    • SHA1

      949ac3fbe9f9b6f81d5c5c6c44b6fa778f8ddd9e

    • SHA256

      e75a066c704f38d1e32cd660fcf2283f4ae304a6a160d5c66b456c1a1c71f846

    • SHA512

      ab3b895f0907e88d22e802cbc445eb2b114f44db415b9c00c6cbb86dfe89e531f51704b7ab6b667308b8ad8f76acb1e3cd14ce360e8d773b75b140bfa1b8f12c

    • SSDEEP

      6144:Xdt+Sw0XTbnNxunXe8yhrtMsQBvli+RQFdq:Xdt+Sw0jLvAO8qRMsrOQF

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks