Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ef08ab8fa9b6c767f1a1f8006c42f110_NeikiAnalytics.exe

  • Size

    492KB

  • Sample

    240517-thf8cafd3t

  • MD5

    ef08ab8fa9b6c767f1a1f8006c42f110

  • SHA1

    430558510a4ed473e1b52572e52ae2beaaac8de0

  • SHA256

    7efc8c5773b8996353453ab9cb02746dd3a4300fb0f897623c7fc50453f7ff0c

  • SHA512

    801c0b09a031d06f83b2e7a5b09c27718e3929b9ff1e2f6295c413439b7531d7c6c31fc1f7dcf286c1aaa2102cfeadd8706f0d5a57c04aa75c3d1634e2038a00

  • SSDEEP

    6144:n3C9BRo7MlrWKo+lS0Le4xRSAoq78yoyfx93svqTbWL5wEpOQ9DRRv:n3C9yMo+S0L9xRnoq7H9QYcmeN9DX

Malware Config

Targets

    • Target

      ef08ab8fa9b6c767f1a1f8006c42f110_NeikiAnalytics.exe

    • Size

      492KB

    • MD5

      ef08ab8fa9b6c767f1a1f8006c42f110

    • SHA1

      430558510a4ed473e1b52572e52ae2beaaac8de0

    • SHA256

      7efc8c5773b8996353453ab9cb02746dd3a4300fb0f897623c7fc50453f7ff0c

    • SHA512

      801c0b09a031d06f83b2e7a5b09c27718e3929b9ff1e2f6295c413439b7531d7c6c31fc1f7dcf286c1aaa2102cfeadd8706f0d5a57c04aa75c3d1634e2038a00

    • SSDEEP

      6144:n3C9BRo7MlrWKo+lS0Le4xRSAoq78yoyfx93svqTbWL5wEpOQ9DRRv:n3C9yMo+S0L9xRnoq7H9QYcmeN9DX

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks