Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    342530de153b0bb48252ceb4080c4f50_NeikiAnalytics

  • Size

    3.7MB

  • Sample

    240511-yzne7sab29

  • MD5

    342530de153b0bb48252ceb4080c4f50

  • SHA1

    dbeb75ad50d2cdbf387fba8871414015b8e00ba9

  • SHA256

    a41005c97631a5fee3f1a7285ebe0bad18a2765a4aa676c1893d04e3fe9e3535

  • SHA512

    0192956cac5dd4b069209f52c996b70e104166d55a777749ba98e498d8aad2bea099aadd721661e967a7b3d75df552ea5d5c47e7b75fd522dcd30913a9709fde

  • SSDEEP

    98304:e3obcEffDvnh88mNuHMiABZlZlpGiuKvBGMQ9jf3:es7nhVPPiXHGbkAhl3

Malware Config

Targets

    • Target

      342530de153b0bb48252ceb4080c4f50_NeikiAnalytics

    • Size

      3.7MB

    • MD5

      342530de153b0bb48252ceb4080c4f50

    • SHA1

      dbeb75ad50d2cdbf387fba8871414015b8e00ba9

    • SHA256

      a41005c97631a5fee3f1a7285ebe0bad18a2765a4aa676c1893d04e3fe9e3535

    • SHA512

      0192956cac5dd4b069209f52c996b70e104166d55a777749ba98e498d8aad2bea099aadd721661e967a7b3d75df552ea5d5c47e7b75fd522dcd30913a9709fde

    • SSDEEP

      98304:e3obcEffDvnh88mNuHMiABZlZlpGiuKvBGMQ9jf3:es7nhVPPiXHGbkAhl3

    • Modifies AppInit DLL entries

    • Executes dropped EXE

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

MITRE ATT&CK Enterprise v15

Tasks