Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9984511d06af086d3772e9e4a947fac0_NeikiAnalytics.exe

  • Size

    3.6MB

  • Sample

    240603-dr8e7ahc2z

  • MD5

    9984511d06af086d3772e9e4a947fac0

  • SHA1

    c78d2995d304cd9053fd6e12412fa20530cea911

  • SHA256

    958d5d9f0681d3d23a75e88c013c79f0f89b1b16271140303c7e41a9d795d99f

  • SHA512

    684590846f597248cdfb44610c245f0ed86870dcb2b43c32b8b62d3f0767ee0bc78975b6fcaf4d1ada69f431d8e89950561e28a829f08951d33194d35ba2e19e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBlB/bSqz8:sxX7QnxrloE5dpUpKbVz8

Malware Config

Targets

    • Target

      9984511d06af086d3772e9e4a947fac0_NeikiAnalytics.exe

    • Size

      3.6MB

    • MD5

      9984511d06af086d3772e9e4a947fac0

    • SHA1

      c78d2995d304cd9053fd6e12412fa20530cea911

    • SHA256

      958d5d9f0681d3d23a75e88c013c79f0f89b1b16271140303c7e41a9d795d99f

    • SHA512

      684590846f597248cdfb44610c245f0ed86870dcb2b43c32b8b62d3f0767ee0bc78975b6fcaf4d1ada69f431d8e89950561e28a829f08951d33194d35ba2e19e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBlB/bSqz8:sxX7QnxrloE5dpUpKbVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks