Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

950edb5f64...cs.exe

windows7-x64

7

950edb5f64...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    149s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/05/2024, 16:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    950edb5f6461851334c7bfba8309fa80_NeikiAnalytics.exe

  • Size

    83KB

  • MD5

    950edb5f6461851334c7bfba8309fa80

  • SHA1

    1ed366494ff83a031cc2940af77536af5eb6b4fb

  • SHA256

    a4d6da404a44bdb0640dcb6b31c0389d91500875ff366f1d74a28b0359922e75

  • SHA512

    aaf03e10e5b3d7f33d2981ffacce2f09c0f2a2dff06524d43bc74db5d399affce4d07280c1921b6938c93e889fbd4fbc0bc9e94915efaf6bf85b0062d4b05856

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+8K:LJ0TAz6Mte4A+aaZx8EnCGVu8

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 8 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\950edb5f6461851334c7bfba8309fa80_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\950edb5f6461851334c7bfba8309fa80_NeikiAnalytics.exe"
    1⤵
      PID:5104

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\rifaien2-zM0qXeBlyl6RJOf2.exe
      Filesize

      83KB

      MD5

      0532916a608e7fb2d78a736636c3a06f

      SHA1

      f97bcfecafc3007f2bb77c8414d62bb8e459f37c

      SHA256

      7b4d11d967eb212fd6d3ab8308983d9cafca1483f78d8f25c9e60b2b83777ddc

      SHA512

      0be0d50f89632bd3f484edc3df29afd199815ab69f14140f07491a1d98bc41c7cdd09f446e82b4a68dc2180ebc3842e2dbe9df36666f0709e03e0cb2a5c025c2

      Download Submit

    • memory/5104-0-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/5104-1-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/5104-4-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/5104-8-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/5104-15-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/5104-22-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/5104-28-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download