Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    511e489560d192b86c7153b0160fd380_NeikiAnalytics.exe

  • Size

    73KB

  • Sample

    240602-h9w74afe45

  • MD5

    511e489560d192b86c7153b0160fd380

  • SHA1

    a5107ccf9ee55c32c9a2df4895e4683eefc69d9b

  • SHA256

    6e9c33a21ad64a9c363fb4aa7b3c57908e48482419220934d99511b27469b9b9

  • SHA512

    113569fed44c06a9c335f93542b2606ac6f1b8773c525362c5c9c72cbae6180de6e9b87a14dec0f11c7548b2e43343d884d13f73caca166481053bbc1594496d

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSsD+cGUFzJ5m:ymb3NkkiQ3mdBjFIwsDhbN3m

Malware Config

Targets

    • Target

      511e489560d192b86c7153b0160fd380_NeikiAnalytics.exe

    • Size

      73KB

    • MD5

      511e489560d192b86c7153b0160fd380

    • SHA1

      a5107ccf9ee55c32c9a2df4895e4683eefc69d9b

    • SHA256

      6e9c33a21ad64a9c363fb4aa7b3c57908e48482419220934d99511b27469b9b9

    • SHA512

      113569fed44c06a9c335f93542b2606ac6f1b8773c525362c5c9c72cbae6180de6e9b87a14dec0f11c7548b2e43343d884d13f73caca166481053bbc1594496d

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSsD+cGUFzJ5m:ymb3NkkiQ3mdBjFIwsDhbN3m

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks