Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

169072aa37...cs.exe

windows7-x64

10

169072aa37...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    169072aa373424f430b97af612724eb0_NeikiAnalytics.exe

  • Size

    2.4MB

  • Sample

    240517-wv6pwacb7y

  • MD5

    169072aa373424f430b97af612724eb0

  • SHA1

    33646ce224bf4fa34885f6df51678a48a9c82dfa

  • SHA256

    f2fa56a85e14d0eb5c6cd81c8e55d88aa454f829cb28209ebebc176cb204d3aa

  • SHA512

    3be8f980ba3413006f43a833952925a2109e12b7354c9b620269044ce0217f1aa13e27c6f7abae845a5bbdabc44f8323d19dd427907fcb4c921c2d16c780084d

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6St1lOqq+jCpLPz:BemTLkNdfE0pZrwV

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      169072aa373424f430b97af612724eb0_NeikiAnalytics.exe

    • Size

      2.4MB

    • MD5

      169072aa373424f430b97af612724eb0

    • SHA1

      33646ce224bf4fa34885f6df51678a48a9c82dfa

    • SHA256

      f2fa56a85e14d0eb5c6cd81c8e55d88aa454f829cb28209ebebc176cb204d3aa

    • SHA512

      3be8f980ba3413006f43a833952925a2109e12b7354c9b620269044ce0217f1aa13e27c6f7abae845a5bbdabc44f8323d19dd427907fcb4c921c2d16c780084d

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6St1lOqq+jCpLPz:BemTLkNdfE0pZrwV

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks