Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    68485cdd45c7606f9a95dfd2c1104480_NeikiAnalytics.exe

  • Size

    3.6MB

  • Sample

    240602-z1tjaafb3w

  • MD5

    68485cdd45c7606f9a95dfd2c1104480

  • SHA1

    f03fd91c0dad2534b4eb95b06172bb085f11b182

  • SHA256

    55d6b5084d2ff061e3f105c17031459105a6c320bd39b127ee76a7d5396c286c

  • SHA512

    ac0c3c61050596408cbd9bf4d501e71823cbe9922fa592a26dcdeb5eb00a4e69ffdf045d5cca4d01e00aa1ae8c399634a8c1f03774e07581b583cb5f8d2886ad

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bSqz8:sxX7QnxrloE5dpUp4bVz8

Malware Config

Targets

    • Target

      68485cdd45c7606f9a95dfd2c1104480_NeikiAnalytics.exe

    • Size

      3.6MB

    • MD5

      68485cdd45c7606f9a95dfd2c1104480

    • SHA1

      f03fd91c0dad2534b4eb95b06172bb085f11b182

    • SHA256

      55d6b5084d2ff061e3f105c17031459105a6c320bd39b127ee76a7d5396c286c

    • SHA512

      ac0c3c61050596408cbd9bf4d501e71823cbe9922fa592a26dcdeb5eb00a4e69ffdf045d5cca4d01e00aa1ae8c399634a8c1f03774e07581b583cb5f8d2886ad

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bSqz8:sxX7QnxrloE5dpUp4bVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks