Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

20113f2a31...cs.exe

windows7-x64

7

20113f2a31...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    20113f2a31c0e2b232236b0a528476c0_NeikiAnalytics.exe

  • Size

    222KB

  • Sample

    240611-ab851awcpe

  • MD5

    20113f2a31c0e2b232236b0a528476c0

  • SHA1

    f9849201f419bb14339f2d3d4b4de27a95cd2ab6

  • SHA256

    37e1f790070a8e389c2d73d7159d6e15e0d2403b2a75f4c58c978ede978e85ae

  • SHA512

    0c19218bdf15de7c903ba1d7d68c5bfea553d27afca64eb16ba9ff088db33898d17b6dba68123d9676e1c1f288c88254cb6b061117666d37470591c5477dbfde

  • SSDEEP

    3072:DftffjmNoxernUANgbW4KrYjzbg0tmGq9JlNkTjyqLSo5UOvyvrvTNllaBIMj4h8:TVfjmNHNv4KrQzDt81NkTu3JyIM82

Score
7/10

Malware Config

Targets

    • Target

      20113f2a31c0e2b232236b0a528476c0_NeikiAnalytics.exe

    • Size

      222KB

    • MD5

      20113f2a31c0e2b232236b0a528476c0

    • SHA1

      f9849201f419bb14339f2d3d4b4de27a95cd2ab6

    • SHA256

      37e1f790070a8e389c2d73d7159d6e15e0d2403b2a75f4c58c978ede978e85ae

    • SHA512

      0c19218bdf15de7c903ba1d7d68c5bfea553d27afca64eb16ba9ff088db33898d17b6dba68123d9676e1c1f288c88254cb6b061117666d37470591c5477dbfde

    • SSDEEP

      3072:DftffjmNoxernUANgbW4KrYjzbg0tmGq9JlNkTjyqLSo5UOvyvrvTNllaBIMj4h8:TVfjmNHNv4KrQzDt81NkTu3JyIM82

    Score
    7/10

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks