Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    356ba37793990061cfa5127b03cca3c0_NeikiAnalytics.exe

  • Size

    71KB

  • Sample

    240611-p5alvsxelb

  • MD5

    356ba37793990061cfa5127b03cca3c0

  • SHA1

    80d20a639f33c3aad4260a98fa7b64b926c65dce

  • SHA256

    713209f10e145727c1b6b483f925efd7db20ce7c6b14aaf4dcbc957455eadaee

  • SHA512

    449d493d5612082e7d460fb4d150a4b41d6ec33e42e98676c2f359a1075d3b00068c8deb06726b3a2e2362bd46239d0d8a1379061632dc52fec05178408a2edb

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTu:ZRpAyazIliazTu

Malware Config

Targets

    • Target

      356ba37793990061cfa5127b03cca3c0_NeikiAnalytics.exe

    • Size

      71KB

    • MD5

      356ba37793990061cfa5127b03cca3c0

    • SHA1

      80d20a639f33c3aad4260a98fa7b64b926c65dce

    • SHA256

      713209f10e145727c1b6b483f925efd7db20ce7c6b14aaf4dcbc957455eadaee

    • SHA512

      449d493d5612082e7d460fb4d150a4b41d6ec33e42e98676c2f359a1075d3b00068c8deb06726b3a2e2362bd46239d0d8a1379061632dc52fec05178408a2edb

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTu:ZRpAyazIliazTu

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks