Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    24c05e6541ec799083c167779e2c6710_NeikiAnalytics.exe

  • Size

    128KB

  • Sample

    240516-yrt8saea4v

  • MD5

    24c05e6541ec799083c167779e2c6710

  • SHA1

    88bd8016caf80b585dab560c6f4276faba434e9f

  • SHA256

    11dfbbb6b113005ecf81e1e994b6d5afbd5a33bd695e15f920ca1e445973ae0e

  • SHA512

    fad0b792eeeac55ace9fdeeb8f75436ea2647784c43a3cf3960d0b364ce7e9492c50c303dd13e7c2b8ea10679a3eadb9d31345cfc386d3bb432f4893221a8b22

  • SSDEEP

    3072:XcTGNp6rym/PwidSX3ReDrFDHZtOgxBOXXH:XcTw6vP7dSX3RO5tTDUX

Score
10/10

Malware Config

Targets

    • Target

      24c05e6541ec799083c167779e2c6710_NeikiAnalytics.exe

    • Size

      128KB

    • MD5

      24c05e6541ec799083c167779e2c6710

    • SHA1

      88bd8016caf80b585dab560c6f4276faba434e9f

    • SHA256

      11dfbbb6b113005ecf81e1e994b6d5afbd5a33bd695e15f920ca1e445973ae0e

    • SHA512

      fad0b792eeeac55ace9fdeeb8f75436ea2647784c43a3cf3960d0b364ce7e9492c50c303dd13e7c2b8ea10679a3eadb9d31345cfc386d3bb432f4893221a8b22

    • SSDEEP

      3072:XcTGNp6rym/PwidSX3ReDrFDHZtOgxBOXXH:XcTw6vP7dSX3RO5tTDUX

    Score
    10/10
    • Adds autorun key to be loaded by Explorer.exe on startup

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks