Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1f3bacf4be682d7cecedb594439b0190_NeikiAnalytics

  • Size

    362KB

  • Sample

    240515-x6kgfsfh81

  • MD5

    1f3bacf4be682d7cecedb594439b0190

  • SHA1

    1cac074eb3a2ae79f0f167af191f23f5c7395228

  • SHA256

    e13b252629a5d69022e976a18fd3eb576de0efee7038a17874fbab05f0808400

  • SHA512

    74952d7f77c0be184c64ae127735d4a6e8405661ece57458a8884e791b31d03a72a019a7077e9a672f52e32884289431b7b5cf9689234ab9592f582535b04574

  • SSDEEP

    6144:oHX6V9Emsm8tGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZxF:o36yttmuMtrQ07nGWxWSsmiMyh95r5Oa

Malware Config

Targets

    • Target

      1f3bacf4be682d7cecedb594439b0190_NeikiAnalytics

    • Size

      362KB

    • MD5

      1f3bacf4be682d7cecedb594439b0190

    • SHA1

      1cac074eb3a2ae79f0f167af191f23f5c7395228

    • SHA256

      e13b252629a5d69022e976a18fd3eb576de0efee7038a17874fbab05f0808400

    • SHA512

      74952d7f77c0be184c64ae127735d4a6e8405661ece57458a8884e791b31d03a72a019a7077e9a672f52e32884289431b7b5cf9689234ab9592f582535b04574

    • SSDEEP

      6144:oHX6V9Emsm8tGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZxF:o36yttmuMtrQ07nGWxWSsmiMyh95r5Oa

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks