Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1611be0e4c8b4c4f4e77ba6ed346a086_NeikiAnalytics.exe

  • Size

    128KB

  • Sample

    240520-k63ltade51

  • MD5

    1611be0e4c8b4c4f4e77ba6ed346a086

  • SHA1

    f9e19b85a3798047e5e460185ee704b2f77bafdc

  • SHA256

    464ec3a7a77a6a6dd6164301506052685a694f3941d79c5866173c4ce194a802

  • SHA512

    e5cd892b9d5e073c59da6c7f97d6f95da93e9ff2504f52543730833d50118e274b20e1a2f67f2f3d6e65939e45c41a4546b4653ea8dd7df23bb368e4fe0dad90

  • SSDEEP

    3072:98i3tLdeW3ZGZ2/BhHmiImXJ2fYdV46nfPyxWhj8NCM/r:9j1i4BhHmNEcYj9nhV8NCU

Malware Config

Targets

    • Target

      1611be0e4c8b4c4f4e77ba6ed346a086_NeikiAnalytics.exe

    • Size

      128KB

    • MD5

      1611be0e4c8b4c4f4e77ba6ed346a086

    • SHA1

      f9e19b85a3798047e5e460185ee704b2f77bafdc

    • SHA256

      464ec3a7a77a6a6dd6164301506052685a694f3941d79c5866173c4ce194a802

    • SHA512

      e5cd892b9d5e073c59da6c7f97d6f95da93e9ff2504f52543730833d50118e274b20e1a2f67f2f3d6e65939e45c41a4546b4653ea8dd7df23bb368e4fe0dad90

    • SSDEEP

      3072:98i3tLdeW3ZGZ2/BhHmiImXJ2fYdV46nfPyxWhj8NCM/r:9j1i4BhHmNEcYj9nhV8NCU

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks