Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
8Static
static
7aa5ee542a4...KI.exe
windows7-x64
8aa5ee542a4...KI.exe
windows10-2004-x64
8$APPDATA/�...��.lnk
windows7-x64
3$APPDATA/�...��.lnk
windows10-2004-x64
3$DESKTOP/I...er.lnk
windows7-x64
3$DESKTOP/I...er.lnk
windows10-2004-x64
3$FAVORITES...��.url
windows7-x64
1$FAVORITES...��.url
windows10-2004-x64
1$FAVORITES...��.url
windows7-x64
1$FAVORITES...��.url
windows10-2004-x64
1$FAVORITES...��.url
windows7-x64
1$FAVORITES...��.url
windows10-2004-x64
1$FAVORITES...̳.url
windows7-x64
1$FAVORITES...̳.url
windows10-2004-x64
1$FAVORITES...Ժ.url
windows7-x64
1$FAVORITES...Ժ.url
windows10-2004-x64
1$FAVORITES...��.url
windows7-x64
1$FAVORITES...��.url
windows10-2004-x64
1$FAVORITES...��.url
windows7-x64
1$FAVORITES...��.url
windows10-2004-x64
1$FAVORITES...��.url
windows7-x64
1$FAVORITES...��.url
windows10-2004-x64
1$FAVORITES...��.url
windows7-x64
1$FAVORITES...��.url
windows10-2004-x64
1$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3General
-
Target
aa5ee542a4354c12cae7af25af1e53b0_NEIKI
-
Size
1.3MB
-
Sample
240508-c3kmtsec41
-
MD5
aa5ee542a4354c12cae7af25af1e53b0
-
SHA1
7958f7a4ff1e2c9f03e0440bdba5e332a3d1630d
-
SHA256
749f125499723769882ac8d339972287de1a3cab8fd816dcc7a2b1696ccc194d
-
SHA512
0e567b5af9da1955594894b962ac5ebdb179239f6e4106fb99277e7b17c37ecfebb115ea1e026d1defc6dac02bb68116b875528b5458151b20c6fdcdd1be1b4a
-
SSDEEP
24576:JAQHIUxFC1tp3JqxGz2qvp6ijcXt95MnAsoF7UQxnM5kz+i/:JAQoptqohpjc99+nPoxxZ+W
Behavioral task
behavioral1
Sample
aa5ee542a4354c12cae7af25af1e53b0_NEIKI.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
aa5ee542a4354c12cae7af25af1e53b0_NEIKI.exe
Resource
win10v2004-20240419-en
Behavioral task
behavioral3
Sample
$APPDATA/ Internet Explorer .lnk
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
$APPDATA/ Internet Explorer .lnk
Resource
win10v2004-20240426-en
Behavioral task
behavioral5
Sample
$DESKTOP/Internet Explorer.lnk
Resource
win7-20240220-en
Behavioral task
behavioral6
Sample
$DESKTOP/Internet Explorer.lnk
Resource
win10v2004-20240226-en
Behavioral task
behavioral7
Sample
$FAVORITES/45566.url
Resource
win7-20240221-en
Behavioral task
behavioral8
Sample
$FAVORITES/45566.url
Resource
win10v2004-20240419-en
Behavioral task
behavioral9
Sample
$FAVORITES/Ϸ.url
Resource
win7-20240221-en
Behavioral task
behavioral10
Sample
$FAVORITES/Ϸ.url
Resource
win10v2004-20240419-en
Behavioral task
behavioral11
Sample
$FAVORITES/ȥ.url
Resource
win7-20240221-en
Behavioral task
behavioral12
Sample
$FAVORITES/ȥ.url
Resource
win10v2004-20240426-en
Behavioral task
behavioral13
Sample
$FAVORITES/뼼̳.url
Resource
win7-20231129-en
Behavioral task
behavioral14
Sample
$FAVORITES/뼼̳.url
Resource
win10v2004-20240419-en
Behavioral task
behavioral15
Sample
$FAVORITES/ӰԺ.url
Resource
win7-20240215-en
Behavioral task
behavioral16
Sample
$FAVORITES/ӰԺ.url
Resource
win10v2004-20240419-en
Behavioral task
behavioral17
Sample
$FAVORITES/.url
Resource
win7-20240220-en
Behavioral task
behavioral18
Sample
$FAVORITES/.url
Resource
win10v2004-20240419-en
Behavioral task
behavioral19
Sample
$FAVORITES/.url
Resource
win7-20240221-en
Behavioral task
behavioral20
Sample
$FAVORITES/.url
Resource
win10v2004-20240226-en
Behavioral task
behavioral21
Sample
$FAVORITES/Ա.url
Resource
win7-20240221-en
Behavioral task
behavioral22
Sample
$FAVORITES/Ա.url
Resource
win10v2004-20240419-en
Behavioral task
behavioral23
Sample
$FAVORITES/.url
Resource
win7-20240215-en
Behavioral task
behavioral24
Sample
$FAVORITES/.url
Resource
win10v2004-20240426-en
Behavioral task
behavioral25
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240419-en
Behavioral task
behavioral26
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
aa5ee542a4354c12cae7af25af1e53b0_NEIKI
-
Size
1.3MB
-
MD5
aa5ee542a4354c12cae7af25af1e53b0
-
SHA1
7958f7a4ff1e2c9f03e0440bdba5e332a3d1630d
-
SHA256
749f125499723769882ac8d339972287de1a3cab8fd816dcc7a2b1696ccc194d
-
SHA512
0e567b5af9da1955594894b962ac5ebdb179239f6e4106fb99277e7b17c37ecfebb115ea1e026d1defc6dac02bb68116b875528b5458151b20c6fdcdd1be1b4a
-
SSDEEP
24576:JAQHIUxFC1tp3JqxGz2qvp6ijcXt95MnAsoF7UQxnM5kz+i/:JAQoptqohpjc99+nPoxxZ+W
Score8/10-
Drops file in Drivers directory
-
Loads dropped DLL
-
-
-
Target
$APPDATA/ Internet Explorer .lnk
-
Size
348B
-
MD5
964426a52eaaede77d27f5fdf2b23573
-
SHA1
eaa979922a09a3cb4de3901b5ad3aa1e946822e3
-
SHA256
b0c6fa1be41fcf6cb87ce4e92ba953be88b1e03431668bd67b7eafcc60548627
-
SHA512
a7d7d45a1d451b8a5c6ad475a8c6585c5412058d9daf93cb04ded8de3ce6b746ca5c284f3998934bb96ec27f1fad730a0e8bbe8e3629cb5198b64d3fa44dd55d
Score3/10 -
-
-
Target
$DESKTOP/Internet Explorer.lnk
-
Size
348B
-
MD5
964426a52eaaede77d27f5fdf2b23573
-
SHA1
eaa979922a09a3cb4de3901b5ad3aa1e946822e3
-
SHA256
b0c6fa1be41fcf6cb87ce4e92ba953be88b1e03431668bd67b7eafcc60548627
-
SHA512
a7d7d45a1d451b8a5c6ad475a8c6585c5412058d9daf93cb04ded8de3ce6b746ca5c284f3998934bb96ec27f1fad730a0e8bbe8e3629cb5198b64d3fa44dd55d
Score3/10 -
-
-
Target
$FAVORITES/45566.url
-
Size
173B
-
MD5
402eab6a53179fe6b96fa37ecfddf870
-
SHA1
4288df2191eac6a756b7d85d090767cddb13d47d
-
SHA256
de95e97285cba0832cca3266b64017c26b0d11413a98f0d561cbbbb4c4fbb3df
-
SHA512
57bc3a8a8787ebf69c842114a1b26b18e9895f8805b13504f6bdfb352bbd78a6d6ac5ab16792ab2e3af80debc06f9b43ec0c239af7c783023140aaddd539dd2e
Score1/10 -
-
-
Target
$FAVORITES/Ϸ.url
-
Size
133B
-
MD5
3c1630b4b4e0e9ce7162c9169c3ce520
-
SHA1
c18de09a4fa40ad400e037baf60a1d9b7d791006
-
SHA256
f4950cfdfa4e9fe1339ec7f2688171c397c262a7db3fc4ea05c00520f8df1e0d
-
SHA512
138deb5dd47ba69ce170dad463eaf67ed7efeac8f1c8c2e1555981fe0f034fb4d78b61744af5f267a9034236a375ee89f266f2633a2b2f8f2de5cc9ac853b84a
Score1/10 -
-
-
Target
$FAVORITES/ȥ.url
-
Size
194B
-
MD5
106e93da553732f867eed2e4e298804c
-
SHA1
ad6ffcd9bd408bbc63b30119fb80844f381ab7a7
-
SHA256
2ebb207600c611aa761985deb3282e907e1e5b5d4349c5e78db64f74ac52643e
-
SHA512
4b968a3cb4ac1b783caeb2a31c8753c845e69d87530f581bdd831584b803edd0bd323c014dd33f19e691767d379dd69666d44941dbbd9734870e63bbd6fc50a7
Score1/10 -
-
-
Target
$FAVORITES/뼼̳.url
-
Size
170B
-
MD5
0db8f97bb95558afe3149ff1291ac25f
-
SHA1
8a1a78e69df0d82f4d56ba7e4c7084cc084ad41a
-
SHA256
72a9256a0a5e0240cccd2ad5ce59212e557e4f842afbdd0c8048a3b3295e3603
-
SHA512
31b57005ae2ec1f5744f21cef12c59077e066b042552315e2b9a227520b51095114ea498727e5bad2b07c095e86525d8bc8d3d59c4dcef6f29c89c354e9e54b4
Score1/10 -
-
-
Target
$FAVORITES/ӰԺ.url
-
Size
116B
-
MD5
60f1f209f56c39a150b4de037e7a5cd9
-
SHA1
b4ea2f313a3a6bd69189a2d7308d006ffbf28944
-
SHA256
8eb3ac48cd7fdbfaefc43419bee1180479cd0454cd9414a6a26ba940308c42ed
-
SHA512
c68823a90f1e17f4bf6ae92254b849d0f06ad50691cd9209b989177f3f2dc796c9a7742d2c20ce51fe1591a0acc933518a6f778523059201d281de49ec3f60b6
Score1/10 -
-
-
Target
$FAVORITES/.url
-
Size
193B
-
MD5
6c362bb07e385fe9e12255ff4fb66250
-
SHA1
ebe7fcf53667ee23e9ec9c6c8841580ccea8324d
-
SHA256
1234866269f38baa5b38c3ee2e27dc017338ed50312645722fe3dffbbe93743f
-
SHA512
47a358b8586c33fc2474588ad5d65d88cd636140241e88023e43664ef133b14368f1267a1a4d31e920d6348c0d7e533c6194d86454aaaa84f14a91aed7531fa3
Score1/10 -
-
-
Target
$FAVORITES/.url
-
Size
322B
-
MD5
f3cf38896fa05c416ca788cb54b782c2
-
SHA1
10f2503fbb3506847c01fbae1fe14b9a729f3425
-
SHA256
5c224dee4c304cebb9b6efb61182872ade7db06e8798286e9ba0b6ccc8374a5b
-
SHA512
afe5ed87483c075d46696a426ee6e56517e12a2c30aaa302841f3e0bb5806d1b9723c9873093b082154c9ce4f7487c04bfe9c8d3aa633fd804c4ac65a0c3560d
Score1/10 -
-
-
Target
$FAVORITES/Ա.url
-
Size
224B
-
MD5
6ee95006dc797989c2f32bc8f11b362b
-
SHA1
38d7938988734bf7bb64e9703d9d6df87b4424e7
-
SHA256
e787b6d71a6efafe80b161f6da348e5748de2df5b0d4460d95a72f03a11c9402
-
SHA512
7eda569c8b24fa9f23a3188388e7607a3906bfbeb7f14f85f6b70e4c18470191282a6c413d2c8ec9ab00af27a13f73197b36c516c0def4377fd6887c015db650
Score1/10 -
-
-
Target
$FAVORITES/.url
-
Size
194B
-
MD5
dfce2acba4ee0e15f0787786ec9738e8
-
SHA1
e39936a76561065004c4c78c8eb5355c260c9ff5
-
SHA256
b7282bb83416d7963bda558a03b5046c0f677b31b58281fc0c39b437e63654a2
-
SHA512
491079b1bd6df4608cd0b6cd93615168682eea9a0d1b93f69625289be33a2c696be34f943ba48a9f969bd6b7cb80b3bee728fbeefea1e020bcfdd9b26787d417
Score1/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
10KB
-
MD5
2b54369538b0fb45e1bb9f49f71ce2db
-
SHA1
c20df42fda5854329e23826ba8f2015f506f7b92
-
SHA256
761dcdf12f41d119f49dbdca9bcab3928bbdfd8edd67e314d54689811f9d3e2f
-
SHA512
25e4898e3c082632dfd493756c4cc017decbef43ffa0b68f36d037841a33f2a1721f30314a85597ac30c7ecc99b7257ea43f3a903744179578a9c65fcf57a8b7
-
SSDEEP
192:ibEOXfXZQ6i1AZ2q6grklcm/iaULQAos:ib/41AZN6uklckLUJo
Score3/10 -