Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

365a888e21...KI.exe

windows7-x64

10

365a888e21...KI.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    365a888e21f17fd805cc3f7832b575d0_NEIKI

  • Size

    1.9MB

  • Sample

    240508-yycx3sdc4x

  • MD5

    365a888e21f17fd805cc3f7832b575d0

  • SHA1

    01602ad18c9b64ecf1b817bb51b90b00b33eecb8

  • SHA256

    91ae760d065ef71217efa1034d3d73a3b083f46aa444deb3b52788242c4e77ac

  • SHA512

    501185ed374985cc654df5b55ff0368a5679e2f43d10ba4d6ba5088e485aeaf2028c1e47027e495f233bb2e9fc4ae23a1d6eca5bfa672ee44161dedc960b287a

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pPg8dOP:NABy

Score
10/10
xmrigexecutionminerupx

Malware Config

Targets

    • Target

      365a888e21f17fd805cc3f7832b575d0_NEIKI

    • Size

      1.9MB

    • MD5

      365a888e21f17fd805cc3f7832b575d0

    • SHA1

      01602ad18c9b64ecf1b817bb51b90b00b33eecb8

    • SHA256

      91ae760d065ef71217efa1034d3d73a3b083f46aa444deb3b52788242c4e77ac

    • SHA512

      501185ed374985cc654df5b55ff0368a5679e2f43d10ba4d6ba5088e485aeaf2028c1e47027e495f233bb2e9fc4ae23a1d6eca5bfa672ee44161dedc960b287a

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pPg8dOP:NABy

    Score
    10/10
    xmrigexecutionminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

      execution

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks