Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
98a6b7ab6f229656164bd47f83b356a0_NeikiAnalytics.exe
-
Size
31KB
-
Sample
240603-c74lhage4x
-
MD5
98a6b7ab6f229656164bd47f83b356a0
-
SHA1
9bc0b8419c27b1881984cd21e13dcf7c84fa732e
-
SHA256
c1538b7e046ae789cfacaf37aabd6e319cda3e05675ad9975e16cb3baa4b0d69
-
SHA512
88a52dd8e60e294117a0e445228727dbd75a3f78280a81b03211bb5e17ba5fb4ab8b89b685ccc42c07b633460d6387a8f698d949c014e8807f160a3eec06c550
-
SSDEEP
768:gWFtq/S5ITXT5PZ3Hzpu9fWWq53E0GrIpU:lq656PJpu9fWWq53hGEpU
Static task
static1
Behavioral task
behavioral1
Sample
98a6b7ab6f229656164bd47f83b356a0_NeikiAnalytics.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
98a6b7ab6f229656164bd47f83b356a0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
98a6b7ab6f229656164bd47f83b356a0_NeikiAnalytics.exe
-
Size
31KB
-
MD5
98a6b7ab6f229656164bd47f83b356a0
-
SHA1
9bc0b8419c27b1881984cd21e13dcf7c84fa732e
-
SHA256
c1538b7e046ae789cfacaf37aabd6e319cda3e05675ad9975e16cb3baa4b0d69
-
SHA512
88a52dd8e60e294117a0e445228727dbd75a3f78280a81b03211bb5e17ba5fb4ab8b89b685ccc42c07b633460d6387a8f698d949c014e8807f160a3eec06c550
-
SSDEEP
768:gWFtq/S5ITXT5PZ3Hzpu9fWWq53E0GrIpU:lq656PJpu9fWWq53hGEpU
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-