Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d34a4fb49868a07637ff78539d9a98b0_NeikiAnalytics

  • Size

    12KB

  • Sample

    240515-qa43naah33

  • MD5

    d34a4fb49868a07637ff78539d9a98b0

  • SHA1

    6b9d005662c65598814abd8aeadc5866928f7c8c

  • SHA256

    c392336ce40a0e5fd21978898d7814b4a106a177a1113636e81d5babb675c48b

  • SHA512

    ceff157513ab97cff0e43b85dbf328e1c0409e76c5413020dd4fb6fcddce130d831ffd56598d49f99f361605d7449ccf74ee7517acd09eb71ac241576af2d711

  • SSDEEP

    384:GL7li/2zqq2DcEQvdhcJKLTp/NK9xaU1:giM/Q9cU1

Score
7/10

Malware Config

Targets

    • Target

      d34a4fb49868a07637ff78539d9a98b0_NeikiAnalytics

    • Size

      12KB

    • MD5

      d34a4fb49868a07637ff78539d9a98b0

    • SHA1

      6b9d005662c65598814abd8aeadc5866928f7c8c

    • SHA256

      c392336ce40a0e5fd21978898d7814b4a106a177a1113636e81d5babb675c48b

    • SHA512

      ceff157513ab97cff0e43b85dbf328e1c0409e76c5413020dd4fb6fcddce130d831ffd56598d49f99f361605d7449ccf74ee7517acd09eb71ac241576af2d711

    • SSDEEP

      384:GL7li/2zqq2DcEQvdhcJKLTp/NK9xaU1:giM/Q9cU1

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks