Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4e01c2b720b87224571343ff968e96c0_NeikiAnalytics.exe

  • Size

    84KB

  • Sample

    240602-hx6k1aee2w

  • MD5

    4e01c2b720b87224571343ff968e96c0

  • SHA1

    18a00bd51446572b4a26bf72c370a8affd4c4338

  • SHA256

    fcc41a505bab73dc16799d93c45ba2e240acfd1c4f664bd2f4f26622ebbe3370

  • SHA512

    795974fa01180e7f62e7969b03b01c74abb6f15dd42ac809de5301e2f904c8c492dfcddff1812ff50c3d3d1b6f1ac953c26b743c4ce561e14a0b4502eb92ce2f

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSLCBCO+HlMO7s0yL+9:ymb3NkkiQ3mdBjFIwLMoHW8yL+9

Malware Config

Targets

    • Target

      4e01c2b720b87224571343ff968e96c0_NeikiAnalytics.exe

    • Size

      84KB

    • MD5

      4e01c2b720b87224571343ff968e96c0

    • SHA1

      18a00bd51446572b4a26bf72c370a8affd4c4338

    • SHA256

      fcc41a505bab73dc16799d93c45ba2e240acfd1c4f664bd2f4f26622ebbe3370

    • SHA512

      795974fa01180e7f62e7969b03b01c74abb6f15dd42ac809de5301e2f904c8c492dfcddff1812ff50c3d3d1b6f1ac953c26b743c4ce561e14a0b4502eb92ce2f

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSLCBCO+HlMO7s0yL+9:ymb3NkkiQ3mdBjFIwLMoHW8yL+9

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks