Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    495c0a382d9b6601f39030b6a03c6ec0_NeikiAnalytics.exe

  • Size

    78KB

  • Sample

    240602-hbbthaed89

  • MD5

    495c0a382d9b6601f39030b6a03c6ec0

  • SHA1

    5db84462a02247b7075d744800f9d6bb531ea2ad

  • SHA256

    fdf0ec31c35ffd64efd32f24e9d4ab0898263fba548aecb2e2a70f696258d35c

  • SHA512

    ee9a53ec1583076a6ffecb6dcd0c9de03c4d296fc2d2478bf2fb89d8b161041395271c8324995638992decf3df58d4026cc65ab6610d1306005083dc50e47daa

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIpWCz+FR4RzWqKkt:ymb3NkkiQ3mdBjFIsIpZ+R4RzWqKkt

Malware Config

Targets

    • Target

      495c0a382d9b6601f39030b6a03c6ec0_NeikiAnalytics.exe

    • Size

      78KB

    • MD5

      495c0a382d9b6601f39030b6a03c6ec0

    • SHA1

      5db84462a02247b7075d744800f9d6bb531ea2ad

    • SHA256

      fdf0ec31c35ffd64efd32f24e9d4ab0898263fba548aecb2e2a70f696258d35c

    • SHA512

      ee9a53ec1583076a6ffecb6dcd0c9de03c4d296fc2d2478bf2fb89d8b161041395271c8324995638992decf3df58d4026cc65ab6610d1306005083dc50e47daa

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIpWCz+FR4RzWqKkt:ymb3NkkiQ3mdBjFIsIpZ+R4RzWqKkt

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks