Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

e1f7e837dd...cs.exe

windows7-x64

7

e1f7e837dd...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e1f7e837dd279648a83783394587a290_NeikiAnalytics

  • Size

    1.5MB

  • Sample

    240510-pspj9aaa26

  • MD5

    e1f7e837dd279648a83783394587a290

  • SHA1

    4b0865e25cc9bce32e4227d5f70b54178a17bc29

  • SHA256

    180f4d3ffb74a0b5cb592ebc7d849cbc15f1b881ab885e9e4bcad0218db0aad8

  • SHA512

    f19465fdab21da477530ffaf3d92a30d50ade2e9bf52aafb762da74b46136f47019726c7662aeda82dc8190deb7f1b57d032f19af98d917b1cdacc126938d2e7

  • SSDEEP

    24576:Ckkvlt2z0NcELe2KiVIvHgXU1Qggv/bQ5p2tId9T1ElCVSKIHidHhvC82C:Svl4+66n0Y3bQIId9+CVSKegHhT

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      e1f7e837dd279648a83783394587a290_NeikiAnalytics

    • Size

      1.5MB

    • MD5

      e1f7e837dd279648a83783394587a290

    • SHA1

      4b0865e25cc9bce32e4227d5f70b54178a17bc29

    • SHA256

      180f4d3ffb74a0b5cb592ebc7d849cbc15f1b881ab885e9e4bcad0218db0aad8

    • SHA512

      f19465fdab21da477530ffaf3d92a30d50ade2e9bf52aafb762da74b46136f47019726c7662aeda82dc8190deb7f1b57d032f19af98d917b1cdacc126938d2e7

    • SSDEEP

      24576:Ckkvlt2z0NcELe2KiVIvHgXU1Qggv/bQ5p2tId9T1ElCVSKIHidHhvC82C:Svl4+66n0Y3bQIId9+CVSKegHhT

    Score
    7/10
    persistencespywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks