Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
18974c83acf231727e4f844734890560_NeikiAnalytics.exe
-
Size
95KB
-
Sample
240530-p51s2sad88
-
MD5
18974c83acf231727e4f844734890560
-
SHA1
7244823c17e8cc6b1c018c3cfd8687efc280cc54
-
SHA256
e2c257633a1d0a36e870b957390f21b49872aa752ba8cebf0dd9ab052938d54d
-
SHA512
b31f389a263b6023e5d2009148051dd594f189198f3de836b1ea7b9f0aee1d41887f300af4c6dbe7aae85cba5a87b70fe5db07f7ebd0f35b093485ac9bc3723b
-
SSDEEP
1536:EGqRGbQHSgOTw1BFxnsUdsdBhMgxRFy2kckEUEVvccRPAAXLSYPph/ATvYSByU64:lbjgjXxdWBhMwRFy2Rk/kcIAebPph/A3
Static task
static1
Behavioral task
behavioral1
Sample
18974c83acf231727e4f844734890560_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
18974c83acf231727e4f844734890560_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
18974c83acf231727e4f844734890560_NeikiAnalytics.exe
-
Size
95KB
-
MD5
18974c83acf231727e4f844734890560
-
SHA1
7244823c17e8cc6b1c018c3cfd8687efc280cc54
-
SHA256
e2c257633a1d0a36e870b957390f21b49872aa752ba8cebf0dd9ab052938d54d
-
SHA512
b31f389a263b6023e5d2009148051dd594f189198f3de836b1ea7b9f0aee1d41887f300af4c6dbe7aae85cba5a87b70fe5db07f7ebd0f35b093485ac9bc3723b
-
SSDEEP
1536:EGqRGbQHSgOTw1BFxnsUdsdBhMgxRFy2kckEUEVvccRPAAXLSYPph/ATvYSByU64:lbjgjXxdWBhMwRFy2Rk/kcIAebPph/A3
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-