Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    15ac1a1a7fced0a5fb6842a0fd30ac80_NeikiAnalytics.exe

  • Size

    192KB

  • Sample

    240517-wswrwsca5v

  • MD5

    15ac1a1a7fced0a5fb6842a0fd30ac80

  • SHA1

    796010fdbd9c54fb98d2849e818b5fac87b87eee

  • SHA256

    4170b03f1e139469b8640821e480e624b956ecfe2239ca4012359c7d641a0632

  • SHA512

    0104b0e74847676b22eb415c4e7be99ff290d79846b938c57e76107dc0711e0496ad08b81d222cdd468727f66f6d4ffe82893bee8882bf30f4a427963aedd31d

  • SSDEEP

    3072:E+kTLB9prXY0jf5cBeNr4MKy3G7UEqMM6T9pui6yYPaI7DehizrVtNe8ohrQ3N:E+eNHXYzUWndpui6yYPaIGckfruN

Malware Config

Targets

    • Target

      15ac1a1a7fced0a5fb6842a0fd30ac80_NeikiAnalytics.exe

    • Size

      192KB

    • MD5

      15ac1a1a7fced0a5fb6842a0fd30ac80

    • SHA1

      796010fdbd9c54fb98d2849e818b5fac87b87eee

    • SHA256

      4170b03f1e139469b8640821e480e624b956ecfe2239ca4012359c7d641a0632

    • SHA512

      0104b0e74847676b22eb415c4e7be99ff290d79846b938c57e76107dc0711e0496ad08b81d222cdd468727f66f6d4ffe82893bee8882bf30f4a427963aedd31d

    • SSDEEP

      3072:E+kTLB9prXY0jf5cBeNr4MKy3G7UEqMM6T9pui6yYPaI7DehizrVtNe8ohrQ3N:E+eNHXYzUWndpui6yYPaIGckfruN

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks