Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

1de6fa7a84...cs.exe

windows7-x64

7

1de6fa7a84...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1de6fa7a84e25a1df9d24bbd4a7ae9b0_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240604-b3mazshe97

  • MD5

    1de6fa7a84e25a1df9d24bbd4a7ae9b0

  • SHA1

    96459fce9384be0e56af03f66d8338374397b10c

  • SHA256

    c5a3a0e9f1c4fb0e9861b3d03c9344d9bb54767f614a39647422ccdfa37d61a7

  • SHA512

    a902a921fd9cdcebe613f83478840e5fec3414fb3c17ce251f27af2f6bd2905ee2fbe2b1e0e29460c68cc125e7ef43dd63f09349311ebb7b969c000e616f012a

  • SSDEEP

    384:pL7li/2zaq2DcEQvdQcJKLTp/NK9xa8v:ZCMCQ9c8v

Score
7/10

Malware Config

Targets

    • Target

      1de6fa7a84e25a1df9d24bbd4a7ae9b0_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      1de6fa7a84e25a1df9d24bbd4a7ae9b0

    • SHA1

      96459fce9384be0e56af03f66d8338374397b10c

    • SHA256

      c5a3a0e9f1c4fb0e9861b3d03c9344d9bb54767f614a39647422ccdfa37d61a7

    • SHA512

      a902a921fd9cdcebe613f83478840e5fec3414fb3c17ce251f27af2f6bd2905ee2fbe2b1e0e29460c68cc125e7ef43dd63f09349311ebb7b969c000e616f012a

    • SSDEEP

      384:pL7li/2zaq2DcEQvdQcJKLTp/NK9xa8v:ZCMCQ9c8v

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks