Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

4b1d2331f7...cs.exe

windows7-x64

7

4b1d2331f7...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4b1d2331f7066579245f50ed49e1a040_NeikiAnalytics.exe

  • Size

    324KB

  • Sample

    240529-jhlsqafd2t

  • MD5

    4b1d2331f7066579245f50ed49e1a040

  • SHA1

    79404882808b2929c4c805eb9395e05002f73c0a

  • SHA256

    42f8f51d2e43f3338da93d7eceef28e6e1d0225aa5cf5e0c3110cc3cd6e8c6aa

  • SHA512

    2650495aeca1a092f4002f8626610b8c5adef29a1f7e881b2fcedbc799f36cbbc33ddc85ad093ad259fb91de9350b0d75593741dc6f264cf4b976f2ccb309550

  • SSDEEP

    6144:msYSsp5yL23j0Tj4M6aW4I7NMk5B8k3qX/SCm63P82AO8XzESqAguOSfmiCgsmG:msYSsp5R3j0Tj4XaW4I7NM0B9a0Iy9LQ

Score
10/10
gcleaner

Malware Config

Extracted

Family

gcleaner

C2

45.12.253.56

45.12.253.72

45.12.253.98

45.12.253.75
Attributes
  • url_path

    /default/puk.php

Targets

    • Target

      4b1d2331f7066579245f50ed49e1a040_NeikiAnalytics.exe

    • Size

      324KB

    • MD5

      4b1d2331f7066579245f50ed49e1a040

    • SHA1

      79404882808b2929c4c805eb9395e05002f73c0a

    • SHA256

      42f8f51d2e43f3338da93d7eceef28e6e1d0225aa5cf5e0c3110cc3cd6e8c6aa

    • SHA512

      2650495aeca1a092f4002f8626610b8c5adef29a1f7e881b2fcedbc799f36cbbc33ddc85ad093ad259fb91de9350b0d75593741dc6f264cf4b976f2ccb309550

    • SSDEEP

      6144:msYSsp5yL23j0Tj4M6aW4I7NMk5B8k3qX/SCm63P82AO8XzESqAguOSfmiCgsmG:msYSsp5R3j0Tj4XaW4I7NM0B9a0Iy9LQ

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks