Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d20426c9b7984b346bd02b293f768010_NeikiAnalytics

  • Size

    2.0MB

  • Sample

    240515-pnyblahd3v

  • MD5

    d20426c9b7984b346bd02b293f768010

  • SHA1

    e2455fc7c5ef5f51429a7b54a492d8162a80fa26

  • SHA256

    20e9724916866c0576cb32d0047bbeab30e572fff68e0c464e531fb4c2ecfa62

  • SHA512

    6dce270cdadf64eef174a40154858457f9b70f4a72830b069a813c1d972c1f030c37db219cb9d1c810ab72c51099f0d34ae8afde699c5826db2e6e72a5b50a79

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2X:GemTLkNdfE0pZaQv

Malware Config

Targets

    • Target

      d20426c9b7984b346bd02b293f768010_NeikiAnalytics

    • Size

      2.0MB

    • MD5

      d20426c9b7984b346bd02b293f768010

    • SHA1

      e2455fc7c5ef5f51429a7b54a492d8162a80fa26

    • SHA256

      20e9724916866c0576cb32d0047bbeab30e572fff68e0c464e531fb4c2ecfa62

    • SHA512

      6dce270cdadf64eef174a40154858457f9b70f4a72830b069a813c1d972c1f030c37db219cb9d1c810ab72c51099f0d34ae8afde699c5826db2e6e72a5b50a79

    • SSDEEP

      49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2X:GemTLkNdfE0pZaQv

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix

Tasks