Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    66278d78e9833236ff88f00471a85270_NeikiAnalytics.exe

  • Size

    202KB

  • Sample

    240530-f1gpyafh9z

  • MD5

    66278d78e9833236ff88f00471a85270

  • SHA1

    14299e9e50ce8c38ae140952f861420a316584a6

  • SHA256

    b4fa7c70de581a82ac8c04e7672472cca65367a151d867cc686e174d27821c82

  • SHA512

    ceafaf5a1d5b4ab65f909042432979e0ad7606ce423f1c4c89a185b7b6aa7ceeef6dcb3bafbc7e904a1984ded2d8c08c5df77127ad25503263e0ab4be0717ea4

  • SSDEEP

    6144:thw+7dC9YwyuI9xYXsvsP7N3EGOPvVIcFfPPIzmy:EfGvo7cycFnwzF

Malware Config

Targets

    • Target

      66278d78e9833236ff88f00471a85270_NeikiAnalytics.exe

    • Size

      202KB

    • MD5

      66278d78e9833236ff88f00471a85270

    • SHA1

      14299e9e50ce8c38ae140952f861420a316584a6

    • SHA256

      b4fa7c70de581a82ac8c04e7672472cca65367a151d867cc686e174d27821c82

    • SHA512

      ceafaf5a1d5b4ab65f909042432979e0ad7606ce423f1c4c89a185b7b6aa7ceeef6dcb3bafbc7e904a1984ded2d8c08c5df77127ad25503263e0ab4be0717ea4

    • SSDEEP

      6144:thw+7dC9YwyuI9xYXsvsP7N3EGOPvVIcFfPPIzmy:EfGvo7cycFnwzF

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks