Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4af78181393af80dc69cb4ba28d031b0_NeikiAnalytics.exe

  • Size

    100KB

  • Sample

    240529-jfb6haga39

  • MD5

    4af78181393af80dc69cb4ba28d031b0

  • SHA1

    dec68afa5f0d11be47295fdb513d2827f8b87408

  • SHA256

    a2e6013fe104ddbbdb1604be27741c72a9e1c23af1f9bf8d46a06656e1bc86ad

  • SHA512

    cbe7e238773f15dedbb75376f057d0549311b433d05c206284d1a02656b251360cb8830438cf8b00564e3ce95e4396ba20d48595f873c9ecdc3c299e4667848b

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDodtzn6zDaE0R5J:ymb3NkkiQ3mdBjFodt2zE3J

Malware Config

Targets

    • Target

      4af78181393af80dc69cb4ba28d031b0_NeikiAnalytics.exe

    • Size

      100KB

    • MD5

      4af78181393af80dc69cb4ba28d031b0

    • SHA1

      dec68afa5f0d11be47295fdb513d2827f8b87408

    • SHA256

      a2e6013fe104ddbbdb1604be27741c72a9e1c23af1f9bf8d46a06656e1bc86ad

    • SHA512

      cbe7e238773f15dedbb75376f057d0549311b433d05c206284d1a02656b251360cb8830438cf8b00564e3ce95e4396ba20d48595f873c9ecdc3c299e4667848b

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDodtzn6zDaE0R5J:ymb3NkkiQ3mdBjFodt2zE3J

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks