Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    32725dfca8db26b27b9994fd3cae3280_NeikiAnalytics.exe

  • Size

    366KB

  • Sample

    240602-ejmzysag58

  • MD5

    32725dfca8db26b27b9994fd3cae3280

  • SHA1

    6d24ae6b7b022a293cdf2ca53728f14511753347

  • SHA256

    d9bcb466b3ffa49158ee3137de3fcc619edc9da105017208a8164cf52ab30a63

  • SHA512

    d19f2d9dfa3a3cbbbf769c4bc41168ef5c4ded9030b1bc30a74f991fbace23c1b51d41fb79b6fbbd02d6a8fc39f94c54cdf5412e9a54855fe6b4897abb723a7a

  • SSDEEP

    6144:n3C9BRo7tvnJ99T/KZEL3RUXownfWQkyCpxwJz9e0pQowLh3EhToK9cT085mnFh9:n3C9ytvnVXFUXoSWlnwJv90aKToFqwfH

Malware Config

Targets

    • Target

      32725dfca8db26b27b9994fd3cae3280_NeikiAnalytics.exe

    • Size

      366KB

    • MD5

      32725dfca8db26b27b9994fd3cae3280

    • SHA1

      6d24ae6b7b022a293cdf2ca53728f14511753347

    • SHA256

      d9bcb466b3ffa49158ee3137de3fcc619edc9da105017208a8164cf52ab30a63

    • SHA512

      d19f2d9dfa3a3cbbbf769c4bc41168ef5c4ded9030b1bc30a74f991fbace23c1b51d41fb79b6fbbd02d6a8fc39f94c54cdf5412e9a54855fe6b4897abb723a7a

    • SSDEEP

      6144:n3C9BRo7tvnJ99T/KZEL3RUXownfWQkyCpxwJz9e0pQowLh3EhToK9cT085mnFh9:n3C9ytvnVXFUXoSWlnwJv90aKToFqwfH

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks