Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5b40eb52a80d2054cb2906d13deb7c40_NeikiAnalytics.exe

  • Size

    232KB

  • Sample

    240519-3eaqtsgf83

  • MD5

    5b40eb52a80d2054cb2906d13deb7c40

  • SHA1

    d0ee190b6a132b1324b6a2b52e429814227c26f5

  • SHA256

    62cef54800b9c993c670651f26030708baed0f9dd9abfbcb32c8b2b3d8c6abb1

  • SHA512

    d849c71d66f07e17d99b7e8198ba9c0c40cb4ad3c2965547a7d0c6ea9b74ce5dd823243d79b3b1d6f5003f32b0b5d200bb035772e11dd5cf1397e70caf7fad68

  • SSDEEP

    3072:91i/NU8bOMYcYYcmy51VRgiFCpCIXUWOLTsEsigcL3P6xxc1VOz1i/NU82OMYcYU:fi/NjO5xbg/CSUFLTwMjs6oi/N+O7

Score
8/10

Malware Config

Targets

    • Target

      5b40eb52a80d2054cb2906d13deb7c40_NeikiAnalytics.exe

    • Size

      232KB

    • MD5

      5b40eb52a80d2054cb2906d13deb7c40

    • SHA1

      d0ee190b6a132b1324b6a2b52e429814227c26f5

    • SHA256

      62cef54800b9c993c670651f26030708baed0f9dd9abfbcb32c8b2b3d8c6abb1

    • SHA512

      d849c71d66f07e17d99b7e8198ba9c0c40cb4ad3c2965547a7d0c6ea9b74ce5dd823243d79b3b1d6f5003f32b0b5d200bb035772e11dd5cf1397e70caf7fad68

    • SSDEEP

      3072:91i/NU8bOMYcYYcmy51VRgiFCpCIXUWOLTsEsigcL3P6xxc1VOz1i/NU82OMYcYU:fi/NjO5xbg/CSUFLTwMjs6oi/N+O7

    Score
    8/10
    • Modifies Installed Components in the registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks