Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    eb0d5802013db668be9c89585d10f940_NeikiAnalytics.exe

  • Size

    61KB

  • Sample

    240517-nv1vmagb26

  • MD5

    eb0d5802013db668be9c89585d10f940

  • SHA1

    ab80ad62580d795cbfe08bc46158f25f975f83dd

  • SHA256

    814fad9d538970814edfab2489098ad61ed10fcec27b3208155226cbf7f6fd58

  • SHA512

    19b7952b33fa5da56434838994902948886e0b879547cfd9e3b501a756da7fd580db039501fb81f1f545463f5b1af8551a5d4365991ca4c06143b721e396d5db

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIug6b+:ymb3NkkiQ3mdBjFIugR

Malware Config

Targets

    • Target

      eb0d5802013db668be9c89585d10f940_NeikiAnalytics.exe

    • Size

      61KB

    • MD5

      eb0d5802013db668be9c89585d10f940

    • SHA1

      ab80ad62580d795cbfe08bc46158f25f975f83dd

    • SHA256

      814fad9d538970814edfab2489098ad61ed10fcec27b3208155226cbf7f6fd58

    • SHA512

      19b7952b33fa5da56434838994902948886e0b879547cfd9e3b501a756da7fd580db039501fb81f1f545463f5b1af8551a5d4365991ca4c06143b721e396d5db

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIug6b+:ymb3NkkiQ3mdBjFIugR

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks