Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

66b8d3e835...cs.exe

windows7-x64

10

66b8d3e835...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    66b8d3e83563987ae9e6347d3dd19870_NeikiAnalytics.exe

  • Size

    543KB

  • Sample

    240602-zv2byaeh6s

  • MD5

    66b8d3e83563987ae9e6347d3dd19870

  • SHA1

    576c4b768a007ff35abc4cfc14e6e0587aa309e2

  • SHA256

    2197938df2d2704f6a525c27f100b7054e97d8e36588a224244cf0b652b03b96

  • SHA512

    e2b285ca72bd4aa7cfc38429815c580422991130a7ad3333650e11b136571936a949fa4871640cff295a7bf2cf1192004d55492b77545c148cf702f339c5b32a

  • SSDEEP

    6144:OU+xtlyDU+xtly7U+xtlyiU+xtlyDU+xtly7U+xtlyiU+xtlyDU+xtly7U+xtly3:OBUBMBNBUBMBNBUBMBNBUBMBNB

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      66b8d3e83563987ae9e6347d3dd19870_NeikiAnalytics.exe

    • Size

      543KB

    • MD5

      66b8d3e83563987ae9e6347d3dd19870

    • SHA1

      576c4b768a007ff35abc4cfc14e6e0587aa309e2

    • SHA256

      2197938df2d2704f6a525c27f100b7054e97d8e36588a224244cf0b652b03b96

    • SHA512

      e2b285ca72bd4aa7cfc38429815c580422991130a7ad3333650e11b136571936a949fa4871640cff295a7bf2cf1192004d55492b77545c148cf702f339c5b32a

    • SSDEEP

      6144:OU+xtlyDU+xtly7U+xtlyiU+xtlyDU+xtly7U+xtlyiU+xtlyDU+xtly7U+xtly3:OBUBMBNBUBMBNBUBMBNBUBMBNB

    Score
    10/10
    evasionpersistence

    • Modifies WinLogon for persistence

      persistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Disables RegEdit via registry modification

      evasion

    • Disables cmd.exe use via registry modification

      evasion

    • Drops file in Drivers directory

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.