Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    132759bccbe8ce3489eb4253b77b3950_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240602-ap5dzacg66

  • MD5

    132759bccbe8ce3489eb4253b77b3950

  • SHA1

    cc747cf1e8b64dd0d138083d0e59b01f41447432

  • SHA256

    a54cb8ad2c79b23a6155ab200b5a48e024bd66019f89229ea8b8a3c13efe75b8

  • SHA512

    b26870f285260f172cfbae16f79befd4c0b9e03697e0e8ec3ffa502ccd79b30ee3fdee5af62e8bfd08f0e2ed721cc6f35bfbd2fc927fba198952bcd559731826

  • SSDEEP

    384:yL7li/2zAq2DcEQvdQcJKLTp/NK9xa71:s8MCQ9c71

Score
7/10

Malware Config

Targets

    • Target

      132759bccbe8ce3489eb4253b77b3950_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      132759bccbe8ce3489eb4253b77b3950

    • SHA1

      cc747cf1e8b64dd0d138083d0e59b01f41447432

    • SHA256

      a54cb8ad2c79b23a6155ab200b5a48e024bd66019f89229ea8b8a3c13efe75b8

    • SHA512

      b26870f285260f172cfbae16f79befd4c0b9e03697e0e8ec3ffa502ccd79b30ee3fdee5af62e8bfd08f0e2ed721cc6f35bfbd2fc927fba198952bcd559731826

    • SSDEEP

      384:yL7li/2zAq2DcEQvdQcJKLTp/NK9xa71:s8MCQ9c71

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks