Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
934c6395fdbfaf3618cd75df51678720_NeikiAnalytics.exe
-
Size
206KB
-
Sample
240608-g1c77ahf7t
-
MD5
934c6395fdbfaf3618cd75df51678720
-
SHA1
c24a012dc29e5d927a0ce107c5b68357faa4404e
-
SHA256
8c1446154d9ff5adfad2e4cbccf641b5e105e4cb820feb842c2d793e70b0e6f7
-
SHA512
86c1dbe6a66ffa7e81495891f56d84a2e93cb9c21ece76fc72f436a581558d5c92fe1bb2e2c87c41b76021f8c4d0f4350ad14fb9d7cbdf2aa58bcd446e1e794b
-
SSDEEP
3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unY:5vEN2U+T6i5LirrllHy4HUcMQY67
Malware Config
Targets
-
-
Target
934c6395fdbfaf3618cd75df51678720_NeikiAnalytics.exe
-
Size
206KB
-
MD5
934c6395fdbfaf3618cd75df51678720
-
SHA1
c24a012dc29e5d927a0ce107c5b68357faa4404e
-
SHA256
8c1446154d9ff5adfad2e4cbccf641b5e105e4cb820feb842c2d793e70b0e6f7
-
SHA512
86c1dbe6a66ffa7e81495891f56d84a2e93cb9c21ece76fc72f436a581558d5c92fe1bb2e2c87c41b76021f8c4d0f4350ad14fb9d7cbdf2aa58bcd446e1e794b
-
SSDEEP
3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unY:5vEN2U+T6i5LirrllHy4HUcMQY67
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1