Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    38ecc1d6a1d952d53d21f2b8d0cd4570_NeikiAnalytics.exe

  • Size

    2.7MB

  • Sample

    240602-fdbkeaca58

  • MD5

    38ecc1d6a1d952d53d21f2b8d0cd4570

  • SHA1

    eddf6ff07e266aeedfcd6513bebf1ce347b42268

  • SHA256

    f600974679db9d77f557ffe6359b6591021159821caad1e0788b7aefa4d66872

  • SHA512

    e0c68ecc30d04e640a8c4260191730e3fd278438cf195890e29d3907520f4fd0108a8a0e137ccc7b318ab9a12ef44486a0e59b269a343485bc39dab755c6efa1

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LByB/bSq:sxX7QnxrloE5dpUpFbV

Malware Config

Targets

    • Target

      38ecc1d6a1d952d53d21f2b8d0cd4570_NeikiAnalytics.exe

    • Size

      2.7MB

    • MD5

      38ecc1d6a1d952d53d21f2b8d0cd4570

    • SHA1

      eddf6ff07e266aeedfcd6513bebf1ce347b42268

    • SHA256

      f600974679db9d77f557ffe6359b6591021159821caad1e0788b7aefa4d66872

    • SHA512

      e0c68ecc30d04e640a8c4260191730e3fd278438cf195890e29d3907520f4fd0108a8a0e137ccc7b318ab9a12ef44486a0e59b269a343485bc39dab755c6efa1

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LByB/bSq:sxX7QnxrloE5dpUpFbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks