Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

1b000262b7...cs.exe

windows7-x64

7

1b000262b7...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1b000262b7ec3ccab0b3f80f90a31930_NeikiAnalytics.exe

  • Size

    3.1MB

  • Sample

    240605-acyewsfh5x

  • MD5

    1b000262b7ec3ccab0b3f80f90a31930

  • SHA1

    ed26d834a1a84a5fe0af223a3e89fd80e03b1a46

  • SHA256

    6d0b683695df3831aa8753ccafaa80243794ed10cf5ecae53f423066338e091d

  • SHA512

    9d019b96883bceb88dff961040626c7eb28f74b17dabad4bed841c732087d5bbe0225ea309b341160b83059eebd19e2424cca4864a720852fb24166af6e37cf6

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpobVz8eLFc

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      1b000262b7ec3ccab0b3f80f90a31930_NeikiAnalytics.exe

    • Size

      3.1MB

    • MD5

      1b000262b7ec3ccab0b3f80f90a31930

    • SHA1

      ed26d834a1a84a5fe0af223a3e89fd80e03b1a46

    • SHA256

      6d0b683695df3831aa8753ccafaa80243794ed10cf5ecae53f423066338e091d

    • SHA512

      9d019b96883bceb88dff961040626c7eb28f74b17dabad4bed841c732087d5bbe0225ea309b341160b83059eebd19e2424cca4864a720852fb24166af6e37cf6

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpobVz8eLFc

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks