Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0f15d84b8fb3530cbbcf9b6a06573070_NeikiAnalytics

  • Size

    91KB

  • Sample

    240511-rzsxcseg74

  • MD5

    0f15d84b8fb3530cbbcf9b6a06573070

  • SHA1

    46f5afbb0f099a0ca9d2e55e9c09085d50f4dac8

  • SHA256

    e3ec46a47e248030446e63ffffd7c17e4f473cc85f78d41f62260ae87fe8f09b

  • SHA512

    63da39075a6a6cfd8ae1dc6c2a59a5083cf5973c46a1469c44dd1857f3930a155348987f17a34db05dacf084e26b835f12ce005a107e95efa901fc15336884d6

  • SSDEEP

    1536:N5VzcfA/6LrVpL74gfh16nDGhqyEvnlfvJuprKAJXwg2MuO5l3Z1uk2hI8vqQwOz:/V2A/gVh74gpgD0qyEvlpur1gtEl3Z1u

Malware Config

Targets

    • Target

      0f15d84b8fb3530cbbcf9b6a06573070_NeikiAnalytics

    • Size

      91KB

    • MD5

      0f15d84b8fb3530cbbcf9b6a06573070

    • SHA1

      46f5afbb0f099a0ca9d2e55e9c09085d50f4dac8

    • SHA256

      e3ec46a47e248030446e63ffffd7c17e4f473cc85f78d41f62260ae87fe8f09b

    • SHA512

      63da39075a6a6cfd8ae1dc6c2a59a5083cf5973c46a1469c44dd1857f3930a155348987f17a34db05dacf084e26b835f12ce005a107e95efa901fc15336884d6

    • SSDEEP

      1536:N5VzcfA/6LrVpL74gfh16nDGhqyEvnlfvJuprKAJXwg2MuO5l3Z1uk2hI8vqQwOz:/V2A/gVh74gpgD0qyEvlpur1gtEl3Z1u

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks