Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8c9de6d509797fb7ee0d586969db6270_NEIKI

  • Size

    60KB

  • Sample

    240508-nrfehsda79

  • MD5

    8c9de6d509797fb7ee0d586969db6270

  • SHA1

    bb86c5c02d0139ae93ec6e4c0c8e16a15aae188e

  • SHA256

    91923805dc817c65f79b1041ed3f3ec674bc6ec084621e521baea8868749cb51

  • SHA512

    57625f6d9bf7ddbf015a8001da89e0b5cfceb548a46841523a5e650953bbacf7bdd097db6b64d676f693a4ac9d8b674a5275a50324208a02c08044d86038196f

  • SSDEEP

    768:ahZyc5B97Dpnb6vfNtSTucPGFTxRijy6A6cb5D7dXWj2deFPyp+d+R9Zx:ahZJF7NYtSTuuQTzijy6Ne5D7hqjFyh

Score
7/10

Malware Config

Targets

    • Target

      8c9de6d509797fb7ee0d586969db6270_NEIKI

    • Size

      60KB

    • MD5

      8c9de6d509797fb7ee0d586969db6270

    • SHA1

      bb86c5c02d0139ae93ec6e4c0c8e16a15aae188e

    • SHA256

      91923805dc817c65f79b1041ed3f3ec674bc6ec084621e521baea8868749cb51

    • SHA512

      57625f6d9bf7ddbf015a8001da89e0b5cfceb548a46841523a5e650953bbacf7bdd097db6b64d676f693a4ac9d8b674a5275a50324208a02c08044d86038196f

    • SSDEEP

      768:ahZyc5B97Dpnb6vfNtSTucPGFTxRijy6A6cb5D7dXWj2deFPyp+d+R9Zx:ahZJF7NYtSTuuQTzijy6Ne5D7hqjFyh

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Matrix

Tasks