Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b29b870c693cdd169c22ac5acad90e80_NEIKI

  • Size

    376KB

  • Sample

    240508-djvt5ahg99

  • MD5

    b29b870c693cdd169c22ac5acad90e80

  • SHA1

    ef31002e247650e864e3dfa15910c25d97aaca1c

  • SHA256

    35ec08c73ca8a10ddb78a76ec1524db8763aa030099bbc5bb6d4e39c3b7385eb

  • SHA512

    2c5395ecf00dc90fc3f598a883264048453d73a95c025fca148bbeb70a60e12a252bf911dfbe68e8053c06c6bf9c62195cab89b9232f50051b0cb06cbc4f1c91

  • SSDEEP

    3072:yDHgAtkpb/YrzXbiVAURfE+HXAB0kCySYo0CkkhHs4WfO7:yzftk2XbiRs+HXc0uo0CkkW1fs

Score
10/10

Malware Config

Targets

    • Target

      b29b870c693cdd169c22ac5acad90e80_NEIKI

    • Size

      376KB

    • MD5

      b29b870c693cdd169c22ac5acad90e80

    • SHA1

      ef31002e247650e864e3dfa15910c25d97aaca1c

    • SHA256

      35ec08c73ca8a10ddb78a76ec1524db8763aa030099bbc5bb6d4e39c3b7385eb

    • SHA512

      2c5395ecf00dc90fc3f598a883264048453d73a95c025fca148bbeb70a60e12a252bf911dfbe68e8053c06c6bf9c62195cab89b9232f50051b0cb06cbc4f1c91

    • SSDEEP

      3072:yDHgAtkpb/YrzXbiVAURfE+HXAB0kCySYo0CkkhHs4WfO7:yzftk2XbiRs+HXc0uo0CkkW1fs

    Score
    10/10
    • Adds autorun key to be loaded by Explorer.exe on startup

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks