Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

3

ac22eb89fa...cs.exe

windows7-x64

5

ac22eb89fa...cs.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    141s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    17/05/2024, 04:53 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ac22eb89fa12a0df9dd617c960579410_NeikiAnalytics.exe

  • Size

    1.6MB

  • MD5

    ac22eb89fa12a0df9dd617c960579410

  • SHA1

    771a4d7761f3192de519639d083ad4ee96e8cfef

  • SHA256

    002c4f95a2c1767143acd073914d2f66c039f263d19698d1b930ef494cae661d

  • SHA512

    8dfe89f4872184a9f9e6a81a5a2c4de45867a25a34e2771ae657ba86002248d365f8970b240e0141be3a8ab342ad869fe6dfb30efa8ffc16055f4e2bbbaf1a75

  • SSDEEP

    49152:XvqQG4LCjlMwE86pUQalkHlObGnIDHNBrOFn:XvqQG1jyNpUYlG3DH8n

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 15 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ac22eb89fa12a0df9dd617c960579410_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\ac22eb89fa12a0df9dd617c960579410_NeikiAnalytics.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious use of SetWindowsHookEx
    PID:2924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2924-0-0x0000000000F50000-0x00000000013DC000-memory.dmp

    Filesize

    4.5MB

    Download

  • memory/2924-1-0x000000007432E000-0x000000007432F000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2924-2-0x0000000000F50000-0x00000000013DC000-memory.dmp

    Filesize

    4.5MB

    Download

  • memory/2924-3-0x00000000003B0000-0x00000000003C2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/2924-4-0x0000000074320000-0x0000000074A0E000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/2924-6-0x0000000000F50000-0x00000000013DC000-memory.dmp

    Filesize

    4.5MB

    Download

  • memory/2924-8-0x0000000074320000-0x0000000074A0E000-memory.dmp

    Filesize

    6.9MB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.