Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2ff4e1f44770a0f19e1e920dad597ba0_NeikiAnalytics.exe

  • Size

    229KB

  • Sample

    240517-zk1yesad65

  • MD5

    2ff4e1f44770a0f19e1e920dad597ba0

  • SHA1

    0c05008e80bd2c81b4a53365a9f1092fd7eb1b0e

  • SHA256

    60039391edd4379e6b6dbdd1f49706f233abc3a75b1b54701f6ea9ca5caedbdd

  • SHA512

    f5d42ccf10b1d44833f9ac17a2782c5c6fb541d597fcd23952e0aca55e1d4fa7d6a2241c449501dfd8e17e15de6be9010a730349f0cbab8b3b0fd9fc2833d370

  • SSDEEP

    6144:rRhOubhRMweStpvu271+HZ/pvkym/89bYEwPhCKvav:rRNM8Tb7AIfFfvav

Malware Config

Targets

    • Target

      2ff4e1f44770a0f19e1e920dad597ba0_NeikiAnalytics.exe

    • Size

      229KB

    • MD5

      2ff4e1f44770a0f19e1e920dad597ba0

    • SHA1

      0c05008e80bd2c81b4a53365a9f1092fd7eb1b0e

    • SHA256

      60039391edd4379e6b6dbdd1f49706f233abc3a75b1b54701f6ea9ca5caedbdd

    • SHA512

      f5d42ccf10b1d44833f9ac17a2782c5c6fb541d597fcd23952e0aca55e1d4fa7d6a2241c449501dfd8e17e15de6be9010a730349f0cbab8b3b0fd9fc2833d370

    • SSDEEP

      6144:rRhOubhRMweStpvu271+HZ/pvkym/89bYEwPhCKvav:rRNM8Tb7AIfFfvav

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks