Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2bd6feb9313ad72550e982188d0938a0_NeikiAnalytics.exe

  • Size

    187KB

  • Sample

    240516-zaebnsfb5y

  • MD5

    2bd6feb9313ad72550e982188d0938a0

  • SHA1

    7c58ef078d63ea5d64546a1227622ba19e3cb9c0

  • SHA256

    9a77236609a89e7925f1094a5660c91e9a7e033aa27f590040be3f97e2defd42

  • SHA512

    67cc1f180e3d2b67b7bb847d8ec748855a16645cfb88ee74b0b80801107ce9b04dbd6274b5922730e95005cbc9924dd5fa3547b617bd381c290a202fc693788f

  • SSDEEP

    3072:eA86X823TrFsehZl2NkzwH5GJks8WYlOWe7VsayDZVZev1N:X8GTrxT9zwZ9s8SZq/svL

Malware Config

Targets

    • Target

      2bd6feb9313ad72550e982188d0938a0_NeikiAnalytics.exe

    • Size

      187KB

    • MD5

      2bd6feb9313ad72550e982188d0938a0

    • SHA1

      7c58ef078d63ea5d64546a1227622ba19e3cb9c0

    • SHA256

      9a77236609a89e7925f1094a5660c91e9a7e033aa27f590040be3f97e2defd42

    • SHA512

      67cc1f180e3d2b67b7bb847d8ec748855a16645cfb88ee74b0b80801107ce9b04dbd6274b5922730e95005cbc9924dd5fa3547b617bd381c290a202fc693788f

    • SSDEEP

      3072:eA86X823TrFsehZl2NkzwH5GJks8WYlOWe7VsayDZVZev1N:X8GTrxT9zwZ9s8SZq/svL

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks