Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3df695efa49df1378a5663f0bbfe9960_NeikiAnalytics.exe

  • Size

    63KB

  • Sample

    240516-1jppfahg6s

  • MD5

    3df695efa49df1378a5663f0bbfe9960

  • SHA1

    e3b7b1cd45041f400cafc40ac4a186fb533894c4

  • SHA256

    7ed3c25a6dbef5127e84cc263dfc77333718b5c56166c870efe8c3167d5f3bc9

  • SHA512

    0ec1e2bca891d90a8e581df6049f12ea328f127787e0397ccf0c66c2e3215c52785242aeb015d344076bad2f3630ccdeb4e46e631be8b56f48aae42b33dbd8b5

  • SSDEEP

    768:rAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGKQLddOW/g4WvU+o/:sUNHFKQbIkHvGMdO747

Malware Config

Targets

    • Target

      3df695efa49df1378a5663f0bbfe9960_NeikiAnalytics.exe

    • Size

      63KB

    • MD5

      3df695efa49df1378a5663f0bbfe9960

    • SHA1

      e3b7b1cd45041f400cafc40ac4a186fb533894c4

    • SHA256

      7ed3c25a6dbef5127e84cc263dfc77333718b5c56166c870efe8c3167d5f3bc9

    • SHA512

      0ec1e2bca891d90a8e581df6049f12ea328f127787e0397ccf0c66c2e3215c52785242aeb015d344076bad2f3630ccdeb4e46e631be8b56f48aae42b33dbd8b5

    • SSDEEP

      768:rAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGKQLddOW/g4WvU+o/:sUNHFKQbIkHvGMdO747

    • Windows security bypass

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Windows security modification

    • Modifies WinLogon

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks