Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d15f162143ecf24dc8033a92b7af21b0_NeikiAnalytics.exe
-
Size
206KB
-
Sample
240604-mjs5zadh32
-
MD5
d15f162143ecf24dc8033a92b7af21b0
-
SHA1
e2a17ff3f08464b64e40188ebe2603fbac3ff169
-
SHA256
9b488fea68a6f383be27b1506d5d4b7e73840126037578d97b992aada9a4f5a4
-
SHA512
5e47ded8736d64252a0e2e12be55e432f73e5b6f23a6ad6ce7bd01e8b5b4e4c3e25cdcd38cccfe1e140472f6b3c3d6f44a62122a279f18da208fd387f1efee74
-
SSDEEP
3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unLx:5vEN2U+T6i5LirrllHy4HUcMQY6Kx
Malware Config
Targets
-
-
Target
d15f162143ecf24dc8033a92b7af21b0_NeikiAnalytics.exe
-
Size
206KB
-
MD5
d15f162143ecf24dc8033a92b7af21b0
-
SHA1
e2a17ff3f08464b64e40188ebe2603fbac3ff169
-
SHA256
9b488fea68a6f383be27b1506d5d4b7e73840126037578d97b992aada9a4f5a4
-
SHA512
5e47ded8736d64252a0e2e12be55e432f73e5b6f23a6ad6ce7bd01e8b5b4e4c3e25cdcd38cccfe1e140472f6b3c3d6f44a62122a279f18da208fd387f1efee74
-
SSDEEP
3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unLx:5vEN2U+T6i5LirrllHy4HUcMQY6Kx
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1