Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4077ee22192c6a0e2e80457a1c00fe30_NeikiAnalytics.exe

  • Size

    57KB

  • Sample

    240602-f9617acf6w

  • MD5

    4077ee22192c6a0e2e80457a1c00fe30

  • SHA1

    9f04b2a90e6ba6b40f2f1ddccc8c3f0026605518

  • SHA256

    ddea2fa6c20ed4bdf5f2d38774fc8acd6d9813a11527a1aca5a735a506b76960

  • SHA512

    4a1e2845dca8a8cf69e1417ca4d2c8a8e5a57303713ed4ddad7db52d6c18bd79d3a58dd28adafcd0ef8f16380dd857988210211c72c990a392716d47ceba0e08

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0chVn13Dtg:ymb3NkkiQ3mdBjF0cr1q

Malware Config

Targets

    • Target

      4077ee22192c6a0e2e80457a1c00fe30_NeikiAnalytics.exe

    • Size

      57KB

    • MD5

      4077ee22192c6a0e2e80457a1c00fe30

    • SHA1

      9f04b2a90e6ba6b40f2f1ddccc8c3f0026605518

    • SHA256

      ddea2fa6c20ed4bdf5f2d38774fc8acd6d9813a11527a1aca5a735a506b76960

    • SHA512

      4a1e2845dca8a8cf69e1417ca4d2c8a8e5a57303713ed4ddad7db52d6c18bd79d3a58dd28adafcd0ef8f16380dd857988210211c72c990a392716d47ceba0e08

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0chVn13Dtg:ymb3NkkiQ3mdBjF0cr1q

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks