Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

1486046170...KI.exe

windows7-x64

10

1486046170...KI.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1486046170b72a33121e09561c6ebab0_NEIKI

  • Size

    55KB

  • Sample

    240508-xrkhxach95

  • MD5

    1486046170b72a33121e09561c6ebab0

  • SHA1

    d6910585d7d3d0388843e3ad1d739d026d9e6fd8

  • SHA256

    dfcf37cd637c1fc73a4beab49a258d7a75264a2705f305a907aaf590e98ab65f

  • SHA512

    da80459742e2546a92ab3eb0b623a5353e5ab04154cede01e1988a3f132d51f204d72d93928784399b8353b5545cdbd4d7b13929952ca9df9a2137fe48e7581a

  • SSDEEP

    1536:/ADxF1spHuPzemIzE5D7bgbnAx7e2Dnh:/gnSpOLeS9gbUh

Score
10/10
persistence

Malware Config

Targets

    • Target

      1486046170b72a33121e09561c6ebab0_NEIKI

    • Size

      55KB

    • MD5

      1486046170b72a33121e09561c6ebab0

    • SHA1

      d6910585d7d3d0388843e3ad1d739d026d9e6fd8

    • SHA256

      dfcf37cd637c1fc73a4beab49a258d7a75264a2705f305a907aaf590e98ab65f

    • SHA512

      da80459742e2546a92ab3eb0b623a5353e5ab04154cede01e1988a3f132d51f204d72d93928784399b8353b5545cdbd4d7b13929952ca9df9a2137fe48e7581a

    • SSDEEP

      1536:/ADxF1spHuPzemIzE5D7bgbnAx7e2Dnh:/gnSpOLeS9gbUh

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks