Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    24237c1bd743aa179b0c88080e8862c0_NeikiAnalytics.exe

  • Size

    351KB

  • Sample

    240611-cyq9ta1glp

  • MD5

    24237c1bd743aa179b0c88080e8862c0

  • SHA1

    249f1c7eae874bfd3a2e0b4155950e176b431b2f

  • SHA256

    43e3eb45ab67e21ce85e775c3d9fc4b85de5a5f366d6d446040da06da16cd711

  • SHA512

    886cef713bc4c044399f763768ee9cc56d2c4b063c8f1ad7088fd1341a967d56fa410baeb9870a6bfe919ed7756cd5e15599523f3ffe9b36ef46a947f034553f

  • SSDEEP

    6144:4cm7ImGddXvJuzyy/SfVFKpU/sien7NuOpo0HmtDKe0wKyKqiOfm8RCfDK4TrHHO:+7TcBuGy/Sa+/sie0OpncKe/KFBOfmzm

Malware Config

Targets

    • Target

      24237c1bd743aa179b0c88080e8862c0_NeikiAnalytics.exe

    • Size

      351KB

    • MD5

      24237c1bd743aa179b0c88080e8862c0

    • SHA1

      249f1c7eae874bfd3a2e0b4155950e176b431b2f

    • SHA256

      43e3eb45ab67e21ce85e775c3d9fc4b85de5a5f366d6d446040da06da16cd711

    • SHA512

      886cef713bc4c044399f763768ee9cc56d2c4b063c8f1ad7088fd1341a967d56fa410baeb9870a6bfe919ed7756cd5e15599523f3ffe9b36ef46a947f034553f

    • SSDEEP

      6144:4cm7ImGddXvJuzyy/SfVFKpU/sien7NuOpo0HmtDKe0wKyKqiOfm8RCfDK4TrHHO:+7TcBuGy/Sa+/sie0OpncKe/KFBOfmzm

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks