Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    100ffadba5aaf071814b14f9d8674a00_NeikiAnalytics.exe

  • Size

    521KB

  • Sample

    240610-np89tahc51

  • MD5

    100ffadba5aaf071814b14f9d8674a00

  • SHA1

    5552cf5680cb7a3c6230b6864d6c5e47478aa6e6

  • SHA256

    d2cc2f875c6c7190ae3d0bccc96cfc394d57be89e8517d57f78b7373827e22a1

  • SHA512

    aec74afd0256c3c0b30024e41d567d940462123ebf01ae47488ee798d1006b0db110dc3c44d2051bb9d1030872d8c6e4bf10aef64b584a0bb3746c5006f57cbf

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2CfNnkymTwaJ3o89H3r:q7Tc2NYHUrAwfMHNnpls4897

Malware Config

Targets

    • Target

      100ffadba5aaf071814b14f9d8674a00_NeikiAnalytics.exe

    • Size

      521KB

    • MD5

      100ffadba5aaf071814b14f9d8674a00

    • SHA1

      5552cf5680cb7a3c6230b6864d6c5e47478aa6e6

    • SHA256

      d2cc2f875c6c7190ae3d0bccc96cfc394d57be89e8517d57f78b7373827e22a1

    • SHA512

      aec74afd0256c3c0b30024e41d567d940462123ebf01ae47488ee798d1006b0db110dc3c44d2051bb9d1030872d8c6e4bf10aef64b584a0bb3746c5006f57cbf

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2CfNnkymTwaJ3o89H3r:q7Tc2NYHUrAwfMHNnpls4897

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks