Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7

3091112117...cs.exe

windows7-x64

8

3091112117...cs.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    30911121177508c939a1f49fe99660a0_NeikiAnalytics

  • Size

    83KB

  • Sample

    240514-1r832sag27

  • MD5

    30911121177508c939a1f49fe99660a0

  • SHA1

    a0e50413da98fbb79a602f702aa125d5d3a7331b

  • SHA256

    7cdf9a5a97817271d414be773a9d359ea2eabbddee95278b235c06598a7c2bd9

  • SHA512

    7c0c78d76fc84f9c572aeb61d562b67b526efe6d2934ef5a689c43528ad5534dd575f9972416e373b8077b778cd5eedd9216fa7baa113094492a9fba95d6bbbc

  • SSDEEP

    1536:yr3Z5IfQmv81a7pP1xF3yX2tM/jTEwwwEiiiiD:WJOfQm01q9X3yX2q/jTW

Score
8/10
evasionupx

Malware Config

Targets

    • Target

      30911121177508c939a1f49fe99660a0_NeikiAnalytics

    • Size

      83KB

    • MD5

      30911121177508c939a1f49fe99660a0

    • SHA1

      a0e50413da98fbb79a602f702aa125d5d3a7331b

    • SHA256

      7cdf9a5a97817271d414be773a9d359ea2eabbddee95278b235c06598a7c2bd9

    • SHA512

      7c0c78d76fc84f9c572aeb61d562b67b526efe6d2934ef5a689c43528ad5534dd575f9972416e373b8077b778cd5eedd9216fa7baa113094492a9fba95d6bbbc

    • SSDEEP

      1536:yr3Z5IfQmv81a7pP1xF3yX2tM/jTEwwwEiiiiD:WJOfQm01q9X3yX2q/jTW

    Score
    8/10
    evasionupx

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks