Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f5c46342c6119e9dac82830cb4f477f0_NEIKI

  • Size

    830KB

  • Sample

    240509-fcntcabd2y

  • MD5

    f5c46342c6119e9dac82830cb4f477f0

  • SHA1

    e5467d75e91eae6c9de62fa696dfb5576a5491a8

  • SHA256

    fec5a46b3342e1625e64d348b4a60eace1626fce6d45bc67f414dd1c40a61514

  • SHA512

    4cfe6745bde2908047607889d4d814dd37bc4eaee4da5fab63543557dbd43d700c569a6e0811fbf302a8cc6b68fef51da8ea6e4187053cdbc2b12749e933f543

  • SSDEEP

    24576:2PIaQ7kTm5AWHRlMugdD+JsRgZRJ4fM430Eg6nET7M/IiN:6IfYTKxlMPdlR8v4UC0Eg6ET7M/I

Malware Config

Targets

    • Target

      f5c46342c6119e9dac82830cb4f477f0_NEIKI

    • Size

      830KB

    • MD5

      f5c46342c6119e9dac82830cb4f477f0

    • SHA1

      e5467d75e91eae6c9de62fa696dfb5576a5491a8

    • SHA256

      fec5a46b3342e1625e64d348b4a60eace1626fce6d45bc67f414dd1c40a61514

    • SHA512

      4cfe6745bde2908047607889d4d814dd37bc4eaee4da5fab63543557dbd43d700c569a6e0811fbf302a8cc6b68fef51da8ea6e4187053cdbc2b12749e933f543

    • SSDEEP

      24576:2PIaQ7kTm5AWHRlMugdD+JsRgZRJ4fM430Eg6nET7M/IiN:6IfYTKxlMPdlR8v4UC0Eg6ET7M/I

    • Executes dropped EXE

    • Modifies file permissions

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks