Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

0bb890f461...cs.exe

windows7-x64

10

0bb890f461...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0bb890f4613ef5e03f64cbf13f7b57f0_NeikiAnalytics.exe

  • Size

    1.2MB

  • Sample

    240528-1q2mksfa43

  • MD5

    0bb890f4613ef5e03f64cbf13f7b57f0

  • SHA1

    abcf6d03c7610a9d3024ab65aa621a127d0ec4a2

  • SHA256

    8d3048b45a8d49dc227d30c39040c419e38bd599268f8b80c3612dcd0acdcadc

  • SHA512

    405b112a7c686a4484e41023f138ed68d22ac7f4e90dc02754bb3b1b2df7915aeac80c3b33f57f6b375c860b945d3fd096308d28d98601afa66971f49565315c

  • SSDEEP

    24576:zQ5aILMCfmAUjzX6xQE4efQg3zNn+2jsvercPk9N4hVI3/TQyFwfkx:E5aIwC+Agr6SqCPGvTpx

Score
10/10
kpottrickbotbankerevasionexecutionstealertrojan

Malware Config

Targets

    • Target

      0bb890f4613ef5e03f64cbf13f7b57f0_NeikiAnalytics.exe

    • Size

      1.2MB

    • MD5

      0bb890f4613ef5e03f64cbf13f7b57f0

    • SHA1

      abcf6d03c7610a9d3024ab65aa621a127d0ec4a2

    • SHA256

      8d3048b45a8d49dc227d30c39040c419e38bd599268f8b80c3612dcd0acdcadc

    • SHA512

      405b112a7c686a4484e41023f138ed68d22ac7f4e90dc02754bb3b1b2df7915aeac80c3b33f57f6b375c860b945d3fd096308d28d98601afa66971f49565315c

    • SSDEEP

      24576:zQ5aILMCfmAUjzX6xQE4efQg3zNn+2jsvercPk9N4hVI3/TQyFwfkx:E5aIwC+Agr6SqCPGvTpx

    Score
    10/10
    kpottrickbotbankerevasionexecutionstealertrojan

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • Trickbot

      Developed in 2016, TrickBot is one of the more recent banking Trojans.

      trojanbankertrickbot

    • Trickbot x86 loader

      Detected Trickbot's x86 loader that unpacks the x86 payload.

    • Stops running service(s)

      evasionexecution

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.