Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

3875b051a9...KI.exe

windows7-x64

7

3875b051a9...KI.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3875b051a933ba13b19ca8883cd1c790_NEIKI

  • Size

    81KB

  • Sample

    240507-z592tsbb78

  • MD5

    3875b051a933ba13b19ca8883cd1c790

  • SHA1

    600458f80cd2ae81fda99f1b2596bb913e0cf5ec

  • SHA256

    5bb60b580dc898f4017a155bece93db3ed6a2ec68461ff2fb6a0c313e2c32630

  • SHA512

    436684adfca8f0f51ebd6205bba077a22ff3218ffa9bbdfa91395f93b5560c1c7fdbbd047b5524ad82dd4776b5a8082ab5323feae4c3d986a21679cc39427467

  • SSDEEP

    1536:GzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfcot:EfMNE1JG6XMk27EbpOthl0ZUed0ot

Score
7/10

Malware Config

Targets

    • Target

      3875b051a933ba13b19ca8883cd1c790_NEIKI

    • Size

      81KB

    • MD5

      3875b051a933ba13b19ca8883cd1c790

    • SHA1

      600458f80cd2ae81fda99f1b2596bb913e0cf5ec

    • SHA256

      5bb60b580dc898f4017a155bece93db3ed6a2ec68461ff2fb6a0c313e2c32630

    • SHA512

      436684adfca8f0f51ebd6205bba077a22ff3218ffa9bbdfa91395f93b5560c1c7fdbbd047b5524ad82dd4776b5a8082ab5323feae4c3d986a21679cc39427467

    • SSDEEP

      1536:GzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfcot:EfMNE1JG6XMk27EbpOthl0ZUed0ot

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks