Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9896cd1b796bafac8faaa7a66aef4a70_NeikiAnalytics.exe

  • Size

    92KB

  • Sample

    240603-c62erahg58

  • MD5

    9896cd1b796bafac8faaa7a66aef4a70

  • SHA1

    7dc75f7e4a7168ce99a0f13435ad9a1eb065523c

  • SHA256

    02e6da3b50bad1d34e88cfebd404318e698e3868a0da6b37502cd52489857f72

  • SHA512

    0f518e2271bfa2d52c9cae295cdeb9ac91f4989f609991ffa7bca1ff988ce777cd3e22a1f557421bc73fba20181f64d78e038a3a567f597a1890f7b0fdcf85d8

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxS1rj/21+:ymb3NkkiQ3mdBjFo73PYP1lri3K8GN4f

Malware Config

Targets

    • Target

      9896cd1b796bafac8faaa7a66aef4a70_NeikiAnalytics.exe

    • Size

      92KB

    • MD5

      9896cd1b796bafac8faaa7a66aef4a70

    • SHA1

      7dc75f7e4a7168ce99a0f13435ad9a1eb065523c

    • SHA256

      02e6da3b50bad1d34e88cfebd404318e698e3868a0da6b37502cd52489857f72

    • SHA512

      0f518e2271bfa2d52c9cae295cdeb9ac91f4989f609991ffa7bca1ff988ce777cd3e22a1f557421bc73fba20181f64d78e038a3a567f597a1890f7b0fdcf85d8

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxS1rj/21+:ymb3NkkiQ3mdBjFo73PYP1lri3K8GN4f

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks