Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4303d55d1d1f93f6bb841e7f7fd58350_NeikiAnalytics

  • Size

    2.2MB

  • Sample

    240510-w65xqaed64

  • MD5

    4303d55d1d1f93f6bb841e7f7fd58350

  • SHA1

    446d5a55eabb6759c94fe5dc5db198086130f0ed

  • SHA256

    0607b284afbb0e1da7e7b09b60ad034992fffbf8b309ebdc81ccbf05695bed25

  • SHA512

    77d749c077171171777706ab85fd93207f13e938466aa04ed14a3fccb2662992163e3e16fd150612359548adedc8b2cb2cc44292a3d8fedb1f766be5877f9df7

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKxY/O1L:BemTLkNdfE0pZrwc

Malware Config

Targets

    • Target

      4303d55d1d1f93f6bb841e7f7fd58350_NeikiAnalytics

    • Size

      2.2MB

    • MD5

      4303d55d1d1f93f6bb841e7f7fd58350

    • SHA1

      446d5a55eabb6759c94fe5dc5db198086130f0ed

    • SHA256

      0607b284afbb0e1da7e7b09b60ad034992fffbf8b309ebdc81ccbf05695bed25

    • SHA512

      77d749c077171171777706ab85fd93207f13e938466aa04ed14a3fccb2662992163e3e16fd150612359548adedc8b2cb2cc44292a3d8fedb1f766be5877f9df7

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKxY/O1L:BemTLkNdfE0pZrwc

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks