Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0f94d45ab5800f079ea8e6e1e4db5500_NeikiAnalytics.exe

  • Size

    206KB

  • Sample

    240604-2gw66see53

  • MD5

    0f94d45ab5800f079ea8e6e1e4db5500

  • SHA1

    0f00c10756732e71d0aaedefcb2cf0f6367426f9

  • SHA256

    e451fda26406ceef6f017b3e414317049e478002b9a58604a7272a083dd96ac9

  • SHA512

    dd6853f08208c72b0d580b8e7319949bcc31fe402129f94367effb4c8ef27b900027f53b028ea9d0698b4691e522d9d52d295745044526cfd5d14cc2d58372ef

  • SSDEEP

    1536:PvQBeOGtrYSSsrc93UBIfdC67m6AJiqgT4+C2HVM1p6TQpCihyo:PhOm2sI93UufdC67ciJTU2HVS64hyo

Malware Config

Targets

    • Target

      0f94d45ab5800f079ea8e6e1e4db5500_NeikiAnalytics.exe

    • Size

      206KB

    • MD5

      0f94d45ab5800f079ea8e6e1e4db5500

    • SHA1

      0f00c10756732e71d0aaedefcb2cf0f6367426f9

    • SHA256

      e451fda26406ceef6f017b3e414317049e478002b9a58604a7272a083dd96ac9

    • SHA512

      dd6853f08208c72b0d580b8e7319949bcc31fe402129f94367effb4c8ef27b900027f53b028ea9d0698b4691e522d9d52d295745044526cfd5d14cc2d58372ef

    • SSDEEP

      1536:PvQBeOGtrYSSsrc93UBIfdC67m6AJiqgT4+C2HVM1p6TQpCihyo:PhOm2sI93UufdC67ciJTU2HVS64hyo

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks