Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
db92d2b50301e5a7c1d01a6151ffb190_NeikiAnalytics.exe
-
Size
75KB
-
Sample
240603-tvs3nsdd54
-
MD5
db92d2b50301e5a7c1d01a6151ffb190
-
SHA1
1cded579f5c351ccc6f958a6a47d2acc963df9f9
-
SHA256
b0483d40a4a1b3090ea968302a0ca5cdf32d2edf35e736f4116f7ac06eae3cd1
-
SHA512
4bd7650dfb99d9bd3fdb5a9f473490feef528c34e3f4dd7338cc5f1d1c14d2cba9f024912265533ad1eeba734287f4c894fa250a785bf7c56d692ac55788cf21
-
SSDEEP
1536:0M7dHk0kFE2XtPIPtBovZck8OMvDgDcdOOKOBfL924xRz/srmRJ5:tJ7tBoKOuDg4dOOzhL924Ir8
Static task
static1
Behavioral task
behavioral1
Sample
db92d2b50301e5a7c1d01a6151ffb190_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
db92d2b50301e5a7c1d01a6151ffb190_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
db92d2b50301e5a7c1d01a6151ffb190_NeikiAnalytics.exe
-
Size
75KB
-
MD5
db92d2b50301e5a7c1d01a6151ffb190
-
SHA1
1cded579f5c351ccc6f958a6a47d2acc963df9f9
-
SHA256
b0483d40a4a1b3090ea968302a0ca5cdf32d2edf35e736f4116f7ac06eae3cd1
-
SHA512
4bd7650dfb99d9bd3fdb5a9f473490feef528c34e3f4dd7338cc5f1d1c14d2cba9f024912265533ad1eeba734287f4c894fa250a785bf7c56d692ac55788cf21
-
SSDEEP
1536:0M7dHk0kFE2XtPIPtBovZck8OMvDgDcdOOKOBfL924xRz/srmRJ5:tJ7tBoKOuDg4dOOzhL924Ir8
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-