Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1b3985a1dabd1f4ea4816cdbeba4eee0_NeikiAnalytics.exe

  • Size

    89KB

  • Sample

    240610-ztlj4a1alm

  • MD5

    1b3985a1dabd1f4ea4816cdbeba4eee0

  • SHA1

    8d49eae63caf839ce22794a03f1eedb8dfaec203

  • SHA256

    087908c9b988e768c3d9ccef18ea1a81284c95b7f6c797290fe88eefeee65739

  • SHA512

    66d16652a52d21e418fa76980ea8c21abbec41e2a854f1d6ebdbc4d12b2856fdf0142532de47255e80b0f98c8c77295538991cb7bf7221a388f687ad2a9db15d

  • SSDEEP

    1536:t3x85+Ks28waVuTtdp/4tqYznfjG3pspbUmir0YxAimi8xdNz4UsNOF2c:th85+KsHPkTtH0/n7bUyi+j4c

Malware Config

Targets

    • Target

      1b3985a1dabd1f4ea4816cdbeba4eee0_NeikiAnalytics.exe

    • Size

      89KB

    • MD5

      1b3985a1dabd1f4ea4816cdbeba4eee0

    • SHA1

      8d49eae63caf839ce22794a03f1eedb8dfaec203

    • SHA256

      087908c9b988e768c3d9ccef18ea1a81284c95b7f6c797290fe88eefeee65739

    • SHA512

      66d16652a52d21e418fa76980ea8c21abbec41e2a854f1d6ebdbc4d12b2856fdf0142532de47255e80b0f98c8c77295538991cb7bf7221a388f687ad2a9db15d

    • SSDEEP

      1536:t3x85+Ks28waVuTtdp/4tqYznfjG3pspbUmir0YxAimi8xdNz4UsNOF2c:th85+KsHPkTtH0/n7bUyi+j4c

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks