Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

5c179a1a8f...cs.exe

windows7-x64

10

5c179a1a8f...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5c179a1a8faf08f5ca0ce812c57fd370_NeikiAnalytics.exe

  • Size

    2.4MB

  • Sample

    240530-akz9fsgd22

  • MD5

    5c179a1a8faf08f5ca0ce812c57fd370

  • SHA1

    3227af929387632ddb9dbf29920aa5651a47cbc0

  • SHA256

    583cb7ad9a4d50cb18d2e8ce0cf9ffe16bab5e9a5e4ebb44ab035a14ac1d4acc

  • SHA512

    f7c45a58e787ac3c2f3bdfb6a9209a0ff62dcd6d4fa4823d548fb5429506e17d7ef7dd59609d01e6bb8b30510fdb4e9c2702d2d8f9a9b2c77793b906e0fc5226

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eoY3:BemTLkNdfE0pZrwE

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      5c179a1a8faf08f5ca0ce812c57fd370_NeikiAnalytics.exe

    • Size

      2.4MB

    • MD5

      5c179a1a8faf08f5ca0ce812c57fd370

    • SHA1

      3227af929387632ddb9dbf29920aa5651a47cbc0

    • SHA256

      583cb7ad9a4d50cb18d2e8ce0cf9ffe16bab5e9a5e4ebb44ab035a14ac1d4acc

    • SHA512

      f7c45a58e787ac3c2f3bdfb6a9209a0ff62dcd6d4fa4823d548fb5429506e17d7ef7dd59609d01e6bb8b30510fdb4e9c2702d2d8f9a9b2c77793b906e0fc5226

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eoY3:BemTLkNdfE0pZrwE

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.