Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2afa383ba2f55beebe3ee0025c06d220_NEIKI
-
Size
73KB
-
Sample
240508-kddrzsbe5x
-
MD5
2afa383ba2f55beebe3ee0025c06d220
-
SHA1
05aa5538afc635fa7ded3628640a7ae08dc44dda
-
SHA256
c3545f70340952cc05f0b72fd35ead34fbb1debb6ca30289ebd94e4c4972dc4e
-
SHA512
9b984a2a272028b724119d431bccf4e6007a43bbe0b8cd0d6b62696e3332f0a2d9078cbd3d45ee43c30de9d4c2485a70d51ca1e45d487066e3ebfac00e34463e
-
SSDEEP
768:lhB5prqhHGaAbkOoT6JUU3FIFYrG5RUyGeQUzpPlpHwrxag7jpiTTGE6vxa2Dl:/dwHGK2UU3FIFYCnJZlpHwlag7CThqd
Static task
static1
Behavioral task
behavioral1
Sample
2afa383ba2f55beebe3ee0025c06d220_NEIKI.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2afa383ba2f55beebe3ee0025c06d220_NEIKI.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2afa383ba2f55beebe3ee0025c06d220_NEIKI
-
Size
73KB
-
MD5
2afa383ba2f55beebe3ee0025c06d220
-
SHA1
05aa5538afc635fa7ded3628640a7ae08dc44dda
-
SHA256
c3545f70340952cc05f0b72fd35ead34fbb1debb6ca30289ebd94e4c4972dc4e
-
SHA512
9b984a2a272028b724119d431bccf4e6007a43bbe0b8cd0d6b62696e3332f0a2d9078cbd3d45ee43c30de9d4c2485a70d51ca1e45d487066e3ebfac00e34463e
-
SSDEEP
768:lhB5prqhHGaAbkOoT6JUU3FIFYrG5RUyGeQUzpPlpHwrxag7jpiTTGE6vxa2Dl:/dwHGK2UU3FIFYCnJZlpHwlag7CThqd
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-