4e5d557959f869952b468be342bfaf811d7e0a37518cb5236b0844e7b7e90494 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

59b5bc0a88...cs.exe

windows7-x64

7

59b5bc0a88...cs.exe

windows10-2004-x64

7

Sharing

General

Target

59b5bc0a88049f6395be32aac10f3e80_NeikiAnalytics
Size

97KB
Sample

240512-zm117sac77
MD5

59b5bc0a88049f6395be32aac10f3e80
SHA1

bac38701a1b9dd0ddf564fb67640b0732ad24e31
SHA256

4e5d557959f869952b468be342bfaf811d7e0a37518cb5236b0844e7b7e90494
SHA512

10d1a5afcf8c726a0368dfe4c22d13f37c9bac1c915a22347150beef96b08d48abd402171bb33076075277a67d58e36d8da9207c6ab63557ed867d77063924c4
SSDEEP

1536:jKywN8I/DY9eUtll6CMLk1IJ5n4+gkYTjipvF2PmEgKQ9Jr3ZdD04:GNbD3UDIJ5n4+gkYvQd2Y

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

59b5bc0a88049f6395be32aac10f3e80_NeikiAnalytics.exe

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

59b5bc0a88049f6395be32aac10f3e80_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  59b5bc0a88049f6395be32aac10f3e80_NeikiAnalytics
- Size
  
  97KB
- MD5
  
  59b5bc0a88049f6395be32aac10f3e80
- SHA1
  
  bac38701a1b9dd0ddf564fb67640b0732ad24e31
- SHA256
  
  4e5d557959f869952b468be342bfaf811d7e0a37518cb5236b0844e7b7e90494
- SHA512
  
  10d1a5afcf8c726a0368dfe4c22d13f37c9bac1c915a22347150beef96b08d48abd402171bb33076075277a67d58e36d8da9207c6ab63557ed867d77063924c4
- SSDEEP
  
  1536:jKywN8I/DY9eUtll6CMLk1IJ5n4+gkYTjipvF2PmEgKQ9Jr3ZdD04:GNbD3UDIJ5n4+gkYvQd2Y
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy