b0483d40a4a1b3090ea968302a0ca5cdf32d2edf35e736f4116f7ac06eae3cd1 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

db92d2b503...cs.exe

windows7-x64

7

db92d2b503...cs.exe

windows10-2004-x64

7

Sharing

General

Target

db92d2b50301e5a7c1d01a6151ffb190_NeikiAnalytics.exe
Size

75KB
Sample

240603-tvs3nsdd54
MD5

db92d2b50301e5a7c1d01a6151ffb190
SHA1

1cded579f5c351ccc6f958a6a47d2acc963df9f9
SHA256

b0483d40a4a1b3090ea968302a0ca5cdf32d2edf35e736f4116f7ac06eae3cd1
SHA512

4bd7650dfb99d9bd3fdb5a9f473490feef528c34e3f4dd7338cc5f1d1c14d2cba9f024912265533ad1eeba734287f4c894fa250a785bf7c56d692ac55788cf21
SSDEEP

1536:0M7dHk0kFE2XtPIPtBovZck8OMvDgDcdOOKOBfL924xRz/srmRJ5:tJ7tBoKOuDg4dOOzhL924Ir8

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

db92d2b50301e5a7c1d01a6151ffb190_NeikiAnalytics.exe

Resource

win7-20240508-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

db92d2b50301e5a7c1d01a6151ffb190_NeikiAnalytics.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  db92d2b50301e5a7c1d01a6151ffb190_NeikiAnalytics.exe
- Size
  
  75KB
- MD5
  
  db92d2b50301e5a7c1d01a6151ffb190
- SHA1
  
  1cded579f5c351ccc6f958a6a47d2acc963df9f9
- SHA256
  
  b0483d40a4a1b3090ea968302a0ca5cdf32d2edf35e736f4116f7ac06eae3cd1
- SHA512
  
  4bd7650dfb99d9bd3fdb5a9f473490feef528c34e3f4dd7338cc5f1d1c14d2cba9f024912265533ad1eeba734287f4c894fa250a785bf7c56d692ac55788cf21
- SSDEEP
  
  1536:0M7dHk0kFE2XtPIPtBovZck8OMvDgDcdOOKOBfL924xRz/srmRJ5:tJ7tBoKOuDg4dOOzhL924Ir8
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy