Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a145b1276f3541b939527b9302ad4a80_NeikiAnalytics.exe

  • Size

    55KB

  • Sample

    240603-m9gvmadf89

  • MD5

    a145b1276f3541b939527b9302ad4a80

  • SHA1

    52caae4b4f57b0f3b934d556e3456e4720847c61

  • SHA256

    23b91e7ecf1ab852ec8e7daa9f295d5fb74ab963a95d92a6987b0e5e967b0823

  • SHA512

    f90fd737eaf869124aeffa007bbe6c6229b090f1f4cd554281998a3ab33cb35029acf01080a1fcd9990cf9ec1c863aca85f6e42a60a88f4c8f2fd252efb931d9

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFyPYt:ymb3NkkiQ3mdBjFIFZt

Malware Config

Targets

    • Target

      a145b1276f3541b939527b9302ad4a80_NeikiAnalytics.exe

    • Size

      55KB

    • MD5

      a145b1276f3541b939527b9302ad4a80

    • SHA1

      52caae4b4f57b0f3b934d556e3456e4720847c61

    • SHA256

      23b91e7ecf1ab852ec8e7daa9f295d5fb74ab963a95d92a6987b0e5e967b0823

    • SHA512

      f90fd737eaf869124aeffa007bbe6c6229b090f1f4cd554281998a3ab33cb35029acf01080a1fcd9990cf9ec1c863aca85f6e42a60a88f4c8f2fd252efb931d9

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFyPYt:ymb3NkkiQ3mdBjFIFZt

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks