Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

e7ad68c0f3...KI.exe

windows7-x64

10

e7ad68c0f3...KI.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e7ad68c0f33fc72c64c970a67082ef40_NEIKI

  • Size

    272KB

  • Sample

    240509-eknb4she61

  • MD5

    e7ad68c0f33fc72c64c970a67082ef40

  • SHA1

    f5fbf05ac2dbdb403721e5a2933ea203e03c5e7c

  • SHA256

    89d417e0258150d4d378ac9de74962255d6abe55e14b8f9c6a12ed7cba426c28

  • SHA512

    b60389d513f1b1130747aae11560b4888409d5da1578260835b8e33d72e3adabd283b917068f9437d41013fbdf1c6f78ddf6c870fa1fd18c946042e376de76a1

  • SSDEEP

    6144:3pIcMvapYcpvByvZ6Mxv5Rar3O6B9fZSLhZmzbByvZ6Mxv5R:3zMvaptByvNv54B9f01ZmHByvNv5

Score
10/10
persistence

Malware Config

Targets

    • Target

      e7ad68c0f33fc72c64c970a67082ef40_NEIKI

    • Size

      272KB

    • MD5

      e7ad68c0f33fc72c64c970a67082ef40

    • SHA1

      f5fbf05ac2dbdb403721e5a2933ea203e03c5e7c

    • SHA256

      89d417e0258150d4d378ac9de74962255d6abe55e14b8f9c6a12ed7cba426c28

    • SHA512

      b60389d513f1b1130747aae11560b4888409d5da1578260835b8e33d72e3adabd283b917068f9437d41013fbdf1c6f78ddf6c870fa1fd18c946042e376de76a1

    • SSDEEP

      6144:3pIcMvapYcpvByvZ6Mxv5Rar3O6B9fZSLhZmzbByvZ6Mxv5R:3zMvaptByvNv54B9f01ZmHByvNv5

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks