Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

b902011e9b...KI.exe

windows7-x64

7

b902011e9b...KI.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b902011e9b117e847174fda1f45f9e00_NEIKI

  • Size

    94KB

  • Sample

    240508-p9wd5agc38

  • MD5

    b902011e9b117e847174fda1f45f9e00

  • SHA1

    a5c3f20d17ffc53ded83a2f08969a2509521d74b

  • SHA256

    7cba2248823d2a645544c919a95fcde92f8e21dab4aa023c2ace89f183388584

  • SHA512

    24c67f0f25f2b875317da73c06cdeee9dc197cb20a5c5f958ce8cdda697bd75a5f7c6ba17f1a6d4da2b37a54177bd7622a635b131936192d85f5276c6fec26fa

  • SSDEEP

    1536:NDc2kE8H1Akjo13tg/+hxOGj0Sgl0D8HxO6CGHSesXj:N4bjoZtzNj0TBxOSHSl

Score
7/10

Malware Config

Targets

    • Target

      b902011e9b117e847174fda1f45f9e00_NEIKI

    • Size

      94KB

    • MD5

      b902011e9b117e847174fda1f45f9e00

    • SHA1

      a5c3f20d17ffc53ded83a2f08969a2509521d74b

    • SHA256

      7cba2248823d2a645544c919a95fcde92f8e21dab4aa023c2ace89f183388584

    • SHA512

      24c67f0f25f2b875317da73c06cdeee9dc197cb20a5c5f958ce8cdda697bd75a5f7c6ba17f1a6d4da2b37a54177bd7622a635b131936192d85f5276c6fec26fa

    • SSDEEP

      1536:NDc2kE8H1Akjo13tg/+hxOGj0Sgl0D8HxO6CGHSesXj:N4bjoZtzNj0TBxOSHSl

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks