Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    235507aa5337ec878fa469519003aed0_NeikiAnalytics.exe

  • Size

    293KB

  • Sample

    240517-yele4sfd8v

  • MD5

    235507aa5337ec878fa469519003aed0

  • SHA1

    224fab2f9646c32b0c81afa3b3b95d4afc211a21

  • SHA256

    f04a98632698e49d16c992dd6340521bae2cf7ea38ae67dd8be97fd480d85bdd

  • SHA512

    1685155a98920dd76c43bbd7e009c5a63cd062b8fb2f26abc902b386403e8a3535b1d4c93dc915117b2fc80736fd5f361531d11eaca6133274c723d04892023c

  • SSDEEP

    6144:ccm4FmowdHoSQkuObHq9ltAszBd+za/p1slTjZXvEQo9dftOH:K4wFHoSQkuUHk1zBR/pMT9XvEhdfw

Malware Config

Targets

    • Target

      235507aa5337ec878fa469519003aed0_NeikiAnalytics.exe

    • Size

      293KB

    • MD5

      235507aa5337ec878fa469519003aed0

    • SHA1

      224fab2f9646c32b0c81afa3b3b95d4afc211a21

    • SHA256

      f04a98632698e49d16c992dd6340521bae2cf7ea38ae67dd8be97fd480d85bdd

    • SHA512

      1685155a98920dd76c43bbd7e009c5a63cd062b8fb2f26abc902b386403e8a3535b1d4c93dc915117b2fc80736fd5f361531d11eaca6133274c723d04892023c

    • SSDEEP

      6144:ccm4FmowdHoSQkuObHq9ltAszBd+za/p1slTjZXvEQo9dftOH:K4wFHoSQkuUHk1zBR/pMT9XvEhdfw

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks