Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0a623403cd3a136d7a11530348715f00_NeikiAnalytics.exe
-
Size
12KB
-
Sample
240609-b99pvsce62
-
MD5
0a623403cd3a136d7a11530348715f00
-
SHA1
7b656d6e6a1732f8656969ae0f84c29d3615cabb
-
SHA256
0083fe8ef5fa529b7cb67fdd3927d91ec3d8736beb405db8612e9aee10864bf1
-
SHA512
a78912d7fb9881258dc5bdd57aa29c7ab644953b7df4650a8ba3d0dda407d28fd242d8140b44ff0f88282270efef355c920213e3bd6232b02b5c32b8af899d6c
-
SSDEEP
384:BL7li/2zjq2DcEQvdhcJKLTp/NK9xaLk:h/M/Q9cLk
Static task
static1
Behavioral task
behavioral1
Sample
0a623403cd3a136d7a11530348715f00_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0a623403cd3a136d7a11530348715f00_NeikiAnalytics.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
0a623403cd3a136d7a11530348715f00_NeikiAnalytics.exe
-
Size
12KB
-
MD5
0a623403cd3a136d7a11530348715f00
-
SHA1
7b656d6e6a1732f8656969ae0f84c29d3615cabb
-
SHA256
0083fe8ef5fa529b7cb67fdd3927d91ec3d8736beb405db8612e9aee10864bf1
-
SHA512
a78912d7fb9881258dc5bdd57aa29c7ab644953b7df4650a8ba3d0dda407d28fd242d8140b44ff0f88282270efef355c920213e3bd6232b02b5c32b8af899d6c
-
SSDEEP
384:BL7li/2zjq2DcEQvdhcJKLTp/NK9xaLk:h/M/Q9cLk
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-