Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

1b3985a1da...cs.exe

windows7-x64

7

1b3985a1da...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1b3985a1dabd1f4ea4816cdbeba4eee0_NeikiAnalytics.exe

  • Size

    89KB

  • Sample

    240610-ztlj4a1alm

  • MD5

    1b3985a1dabd1f4ea4816cdbeba4eee0

  • SHA1

    8d49eae63caf839ce22794a03f1eedb8dfaec203

  • SHA256

    087908c9b988e768c3d9ccef18ea1a81284c95b7f6c797290fe88eefeee65739

  • SHA512

    66d16652a52d21e418fa76980ea8c21abbec41e2a854f1d6ebdbc4d12b2856fdf0142532de47255e80b0f98c8c77295538991cb7bf7221a388f687ad2a9db15d

  • SSDEEP

    1536:t3x85+Ks28waVuTtdp/4tqYznfjG3pspbUmir0YxAimi8xdNz4UsNOF2c:th85+KsHPkTtH0/n7bUyi+j4c

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      1b3985a1dabd1f4ea4816cdbeba4eee0_NeikiAnalytics.exe

    • Size

      89KB

    • MD5

      1b3985a1dabd1f4ea4816cdbeba4eee0

    • SHA1

      8d49eae63caf839ce22794a03f1eedb8dfaec203

    • SHA256

      087908c9b988e768c3d9ccef18ea1a81284c95b7f6c797290fe88eefeee65739

    • SHA512

      66d16652a52d21e418fa76980ea8c21abbec41e2a854f1d6ebdbc4d12b2856fdf0142532de47255e80b0f98c8c77295538991cb7bf7221a388f687ad2a9db15d

    • SSDEEP

      1536:t3x85+Ks28waVuTtdp/4tqYznfjG3pspbUmir0YxAimi8xdNz4UsNOF2c:th85+KsHPkTtH0/n7bUyi+j4c

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks