Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0d9940a2fb465a75a834e1bcb2365700_NeikiAnalytics

  • Size

    2.0MB

  • Sample

    240511-rprasabd6s

  • MD5

    0d9940a2fb465a75a834e1bcb2365700

  • SHA1

    57e336a3298a65ed8eb4cf4d4e4e7fb148a093b6

  • SHA256

    4d8ac20b8364adf21e255b623fc0c7fe15907cc6b92e14ce2bcd5f67d67a3cd2

  • SHA512

    de59bffd3ebbbd62d2a473536cfcf0511a250ef14924b07f0cb7831a594b961ff9cdabb00880fae6a06c2b8c8f18a65dfee7c6b638041816fee714a426c65142

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SNbc4:BemTLkNdfE0pZrwG

Malware Config

Targets

    • Target

      0d9940a2fb465a75a834e1bcb2365700_NeikiAnalytics

    • Size

      2.0MB

    • MD5

      0d9940a2fb465a75a834e1bcb2365700

    • SHA1

      57e336a3298a65ed8eb4cf4d4e4e7fb148a093b6

    • SHA256

      4d8ac20b8364adf21e255b623fc0c7fe15907cc6b92e14ce2bcd5f67d67a3cd2

    • SHA512

      de59bffd3ebbbd62d2a473536cfcf0511a250ef14924b07f0cb7831a594b961ff9cdabb00880fae6a06c2b8c8f18a65dfee7c6b638041816fee714a426c65142

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SNbc4:BemTLkNdfE0pZrwG

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks