Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
152e047a90b072967e1ed9d0f8fa2640_NeikiAnalytics.exe
-
Size
12KB
-
Sample
240609-hyy8bafd2s
-
MD5
152e047a90b072967e1ed9d0f8fa2640
-
SHA1
e43716c46e584735510d8f1fc2368e437802305e
-
SHA256
28eb3beb520000445ad2d399c6a67e1ca2eab0a360a7aeeb39eca6aaff3a19d0
-
SHA512
e453e420e9726333fa52aa9dc4783d25907019179eb382d7ebec2a945bd481d017b3e8574a8f632cfd8d3795936c2d578cfc61201757db3d3db244a54e596a80
-
SSDEEP
384:1L7li/2zUq2DcEQvdhcJKLTp/NK9xaME:VIM/Q9cME
Static task
static1
Behavioral task
behavioral1
Sample
152e047a90b072967e1ed9d0f8fa2640_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
152e047a90b072967e1ed9d0f8fa2640_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
152e047a90b072967e1ed9d0f8fa2640_NeikiAnalytics.exe
-
Size
12KB
-
MD5
152e047a90b072967e1ed9d0f8fa2640
-
SHA1
e43716c46e584735510d8f1fc2368e437802305e
-
SHA256
28eb3beb520000445ad2d399c6a67e1ca2eab0a360a7aeeb39eca6aaff3a19d0
-
SHA512
e453e420e9726333fa52aa9dc4783d25907019179eb382d7ebec2a945bd481d017b3e8574a8f632cfd8d3795936c2d578cfc61201757db3d3db244a54e596a80
-
SSDEEP
384:1L7li/2zUq2DcEQvdhcJKLTp/NK9xaME:VIM/Q9cME
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-