Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    10e8917546bc43cd789a3135d5558830_NeikiAnalytics

  • Size

    12KB

  • Sample

    240514-xmzr2abc5y

  • MD5

    10e8917546bc43cd789a3135d5558830

  • SHA1

    f45838965abc8b031970380cfe22361d0e796b50

  • SHA256

    7cd3647b0e93352d2cedd0103a16ef794b5618f20df6387eeabc8a013bdeb9a9

  • SHA512

    4282081c1bfb21bdb13b11bde62a5bfde9d9a8af86e3d84af3ef03ff8cae26e903f710f7a3057ed6cf67fc45d1edff484ed7bfb775b4d3df3333abfbd8436d52

  • SSDEEP

    384:wL7li/2zDq2DcEQvdhcJKLTp/NK9xa+/:u/M/Q9c+/

Score
7/10

Malware Config

Targets

    • Target

      10e8917546bc43cd789a3135d5558830_NeikiAnalytics

    • Size

      12KB

    • MD5

      10e8917546bc43cd789a3135d5558830

    • SHA1

      f45838965abc8b031970380cfe22361d0e796b50

    • SHA256

      7cd3647b0e93352d2cedd0103a16ef794b5618f20df6387eeabc8a013bdeb9a9

    • SHA512

      4282081c1bfb21bdb13b11bde62a5bfde9d9a8af86e3d84af3ef03ff8cae26e903f710f7a3057ed6cf67fc45d1edff484ed7bfb775b4d3df3333abfbd8436d52

    • SSDEEP

      384:wL7li/2zDq2DcEQvdhcJKLTp/NK9xa+/:u/M/Q9c+/

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks