Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    73607eea67f46332f85f99bac6565710_NeikiAnalytics

  • Size

    6.6MB

  • Sample

    240509-svz1jsbh26

  • MD5

    73607eea67f46332f85f99bac6565710

  • SHA1

    183298f88675d596fc9c581ee2dfd5950540eb3f

  • SHA256

    f97065e4d1744b7773850720e0b09b2e6e8571c0055b053ff6f238362836cdee

  • SHA512

    b7ca74cbfd1242d728d9b3ab965608dc952da6f84a20802a2f11d824ffce7407b52c5f78c542f6a13fa4d67850b9b77b00cef01a0979bd1666fe0a1340b69446

  • SSDEEP

    196608:+5LzT8Y7SuVE6O8Y7SuVMt+DL306egr306eg:+5nGuWnGumE2T

Score
7/10

Malware Config

Targets

    • Target

      73607eea67f46332f85f99bac6565710_NeikiAnalytics

    • Size

      6.6MB

    • MD5

      73607eea67f46332f85f99bac6565710

    • SHA1

      183298f88675d596fc9c581ee2dfd5950540eb3f

    • SHA256

      f97065e4d1744b7773850720e0b09b2e6e8571c0055b053ff6f238362836cdee

    • SHA512

      b7ca74cbfd1242d728d9b3ab965608dc952da6f84a20802a2f11d824ffce7407b52c5f78c542f6a13fa4d67850b9b77b00cef01a0979bd1666fe0a1340b69446

    • SSDEEP

      196608:+5LzT8Y7SuVE6O8Y7SuVMt+DL306egr306eg:+5nGuWnGumE2T

    Score
    7/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks