Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c9183949fb4193c403cc5d9bc4a7f6c0_NeikiAnalytics.exe

  • Size

    282KB

  • Sample

    240520-hk86csha2v

  • MD5

    c9183949fb4193c403cc5d9bc4a7f6c0

  • SHA1

    f2117757fef939e0f7da4a5c51aed7902e92cf61

  • SHA256

    b0ac0a481e1807364a44ac4183d3eb0bf44e893a6def7adae6137af94cc1bdc4

  • SHA512

    fb82db38ea1890784dcb142f23048898278bb5c1cb2e98ff9e64d982dfa584889ccb17452bb18df6df963bc6724bc03f7d08a1b8a8316c030117d3b71ae81f7d

  • SSDEEP

    6144:SmVnxWa3L3PjqEPZlWDSmeM3YC/2AnvGsB4Cy6NNFJW9KYuLOush+X5RhgQ:nf3L3PBes1CuAnvBmz6nXW9KYuLrsh+7

Malware Config

Targets

    • Target

      c9183949fb4193c403cc5d9bc4a7f6c0_NeikiAnalytics.exe

    • Size

      282KB

    • MD5

      c9183949fb4193c403cc5d9bc4a7f6c0

    • SHA1

      f2117757fef939e0f7da4a5c51aed7902e92cf61

    • SHA256

      b0ac0a481e1807364a44ac4183d3eb0bf44e893a6def7adae6137af94cc1bdc4

    • SHA512

      fb82db38ea1890784dcb142f23048898278bb5c1cb2e98ff9e64d982dfa584889ccb17452bb18df6df963bc6724bc03f7d08a1b8a8316c030117d3b71ae81f7d

    • SSDEEP

      6144:SmVnxWa3L3PjqEPZlWDSmeM3YC/2AnvGsB4Cy6NNFJW9KYuLOush+X5RhgQ:nf3L3PBes1CuAnvBmz6nXW9KYuLrsh+7

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Modifies visibility of file extensions in Explorer

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks