Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
76eed18bfd7644c6430096c648ee8a70_NEIKI
-
Size
960KB
-
Sample
240508-ak5h6sgc7w
-
MD5
76eed18bfd7644c6430096c648ee8a70
-
SHA1
45e333c5015d2e99ae2a5aa5dc07ed4cd7e06b76
-
SHA256
939b169c15fee5b794daaf91b050371712c6b6160f75e71a05c4ac9f0c0d96dd
-
SHA512
fbb7d3d007e1ec27eab295cf1f8e890a7341c8fb16ab23f3957042a6d4795fc6f7f580c4fd5bb42bb2c29a67dfd5fd18504ed8dffa5837ccd0a39e0c561223c3
-
SSDEEP
24576:59S5eyTJXcg2dftoQMKgHCKSY8a/ZSbH77Lh:m5DKg24Fj8g4Hbh
Static task
static1
Behavioral task
behavioral1
Sample
76eed18bfd7644c6430096c648ee8a70_NEIKI.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
76eed18bfd7644c6430096c648ee8a70_NEIKI.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
76eed18bfd7644c6430096c648ee8a70_NEIKI
-
Size
960KB
-
MD5
76eed18bfd7644c6430096c648ee8a70
-
SHA1
45e333c5015d2e99ae2a5aa5dc07ed4cd7e06b76
-
SHA256
939b169c15fee5b794daaf91b050371712c6b6160f75e71a05c4ac9f0c0d96dd
-
SHA512
fbb7d3d007e1ec27eab295cf1f8e890a7341c8fb16ab23f3957042a6d4795fc6f7f580c4fd5bb42bb2c29a67dfd5fd18504ed8dffa5837ccd0a39e0c561223c3
-
SSDEEP
24576:59S5eyTJXcg2dftoQMKgHCKSY8a/ZSbH77Lh:m5DKg24Fj8g4Hbh
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-