Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    46fee5990cf50ea7d9e2906c9825f7f0_NeikiAnalytics

  • Size

    24KB

  • Sample

    240510-xfkpjabg8t

  • MD5

    46fee5990cf50ea7d9e2906c9825f7f0

  • SHA1

    d2b0f165238f62bd470467287b2e69ab7eb82ce4

  • SHA256

    e453864ee00e8613b9501b65a190f7f604778aff061277add4ed2d8200d83130

  • SHA512

    3a181c0cd6739136b91cca0e83876377ee65df516ef6cc0c25493b95e38dcf196992b493fd95f49ca9009ea43d97364df113672839c6d81239ce22609eb077a1

  • SSDEEP

    384:jIz4QFC6l7f3qw+GyMjkNFeIcs1zPR+vJGRzUtV+/O0O+8oUfzjm:jIUmC6NfIWwNAp4dJRzUtV+/VJszjm

Malware Config

Targets

    • Target

      46fee5990cf50ea7d9e2906c9825f7f0_NeikiAnalytics

    • Size

      24KB

    • MD5

      46fee5990cf50ea7d9e2906c9825f7f0

    • SHA1

      d2b0f165238f62bd470467287b2e69ab7eb82ce4

    • SHA256

      e453864ee00e8613b9501b65a190f7f604778aff061277add4ed2d8200d83130

    • SHA512

      3a181c0cd6739136b91cca0e83876377ee65df516ef6cc0c25493b95e38dcf196992b493fd95f49ca9009ea43d97364df113672839c6d81239ce22609eb077a1

    • SSDEEP

      384:jIz4QFC6l7f3qw+GyMjkNFeIcs1zPR+vJGRzUtV+/O0O+8oUfzjm:jIUmC6NfIWwNAp4dJRzUtV+/VJszjm

    • Windows security bypass

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Windows security modification

    • Modifies WinLogon

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks