Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

6cbf74feb3...cs.exe

windows7-x64

10

6cbf74feb3...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6cbf74feb357379c6c7d2b2d30d51700_NeikiAnalytics

  • Size

    240KB

  • Sample

    240512-ff6hkacf67

  • MD5

    6cbf74feb357379c6c7d2b2d30d51700

  • SHA1

    30f9c1f5f5c8511941aaf6218ccf5a8e0fa73162

  • SHA256

    025374668ed84a24a24d7681cb7414e85eb3637827783740f31cad5307ff749c

  • SHA512

    86d671db822edb00edd4b1a1b13e64db0cafcdb43acc849b04fd123f2f4186fcc1d58be21c0001908afe0f89e94368408c40a7f6724043556ab11932dcf2ff82

  • SSDEEP

    3072:nTVYDteRAPgxed6BYudlNPMAvAURfE+Hxgu+tAcrbFAJc+RsUi1aVDkOvJ:nTVnRIyedZwlNPjLs+H8rtMs4

Score
10/10
persistence

Malware Config

Targets

    • Target

      6cbf74feb357379c6c7d2b2d30d51700_NeikiAnalytics

    • Size

      240KB

    • MD5

      6cbf74feb357379c6c7d2b2d30d51700

    • SHA1

      30f9c1f5f5c8511941aaf6218ccf5a8e0fa73162

    • SHA256

      025374668ed84a24a24d7681cb7414e85eb3637827783740f31cad5307ff749c

    • SHA512

      86d671db822edb00edd4b1a1b13e64db0cafcdb43acc849b04fd123f2f4186fcc1d58be21c0001908afe0f89e94368408c40a7f6724043556ab11932dcf2ff82

    • SSDEEP

      3072:nTVYDteRAPgxed6BYudlNPMAvAURfE+Hxgu+tAcrbFAJc+RsUi1aVDkOvJ:nTVnRIyedZwlNPjLs+H8rtMs4

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks