Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1ae80551df6570005b4b063d8de75df0NeikiAnalytics.exe

  • Size

    65KB

  • Sample

    240527-z1x7gaac2w

  • MD5

    1ae80551df6570005b4b063d8de75df0

  • SHA1

    fbc31232b6dda1f9152c5037a9e57227b1be6c1b

  • SHA256

    07ce7578dafd7e47a7eb1b62b1e9be888f02ce4e37bad463dd87ff04e57272b5

  • SHA512

    826e328310feb3a40ec4a84dc66cee3a9eaf16f1ab0bef2e137aef99de20b7a17af62c30555d4560df3652b2a38640d8c7c7d6f584bab42e11699d7ad98e76d6

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfMTu:ymb3NkkiQ3mdBjFI4V4Tu

Malware Config

Targets

    • Target

      1ae80551df6570005b4b063d8de75df0NeikiAnalytics.exe

    • Size

      65KB

    • MD5

      1ae80551df6570005b4b063d8de75df0

    • SHA1

      fbc31232b6dda1f9152c5037a9e57227b1be6c1b

    • SHA256

      07ce7578dafd7e47a7eb1b62b1e9be888f02ce4e37bad463dd87ff04e57272b5

    • SHA512

      826e328310feb3a40ec4a84dc66cee3a9eaf16f1ab0bef2e137aef99de20b7a17af62c30555d4560df3652b2a38640d8c7c7d6f584bab42e11699d7ad98e76d6

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfMTu:ymb3NkkiQ3mdBjFI4V4Tu

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks