Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    18974c83acf231727e4f844734890560_NeikiAnalytics.exe

  • Size

    95KB

  • Sample

    240530-p51s2sad88

  • MD5

    18974c83acf231727e4f844734890560

  • SHA1

    7244823c17e8cc6b1c018c3cfd8687efc280cc54

  • SHA256

    e2c257633a1d0a36e870b957390f21b49872aa752ba8cebf0dd9ab052938d54d

  • SHA512

    b31f389a263b6023e5d2009148051dd594f189198f3de836b1ea7b9f0aee1d41887f300af4c6dbe7aae85cba5a87b70fe5db07f7ebd0f35b093485ac9bc3723b

  • SSDEEP

    1536:EGqRGbQHSgOTw1BFxnsUdsdBhMgxRFy2kckEUEVvccRPAAXLSYPph/ATvYSByU64:lbjgjXxdWBhMwRFy2Rk/kcIAebPph/A3

Score
7/10
upx

Malware Config

Targets

    • Target

      18974c83acf231727e4f844734890560_NeikiAnalytics.exe

    • Size

      95KB

    • MD5

      18974c83acf231727e4f844734890560

    • SHA1

      7244823c17e8cc6b1c018c3cfd8687efc280cc54

    • SHA256

      e2c257633a1d0a36e870b957390f21b49872aa752ba8cebf0dd9ab052938d54d

    • SHA512

      b31f389a263b6023e5d2009148051dd594f189198f3de836b1ea7b9f0aee1d41887f300af4c6dbe7aae85cba5a87b70fe5db07f7ebd0f35b093485ac9bc3723b

    • SSDEEP

      1536:EGqRGbQHSgOTw1BFxnsUdsdBhMgxRFy2kckEUEVvccRPAAXLSYPph/ATvYSByU64:lbjgjXxdWBhMwRFy2Rk/kcIAebPph/A3

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks