Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

4e1df30990...cs.exe

windows7-x64

10

4e1df30990...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4e1df309908569dc5bd6866ba1b1b560_NeikiAnalytics.exe

  • Size

    72KB

  • Sample

    240612-3x5nxszclq

  • MD5

    4e1df309908569dc5bd6866ba1b1b560

  • SHA1

    a9713a14de44c1e783d3514c304849ec754f2777

  • SHA256

    e036546cb000e3e95c0b3bf98a98940bc6fc602c953c493dc6d03c1dee2ca434

  • SHA512

    560234b4d0748266e5886c870710dced0d23ea496dc8de3f3615703502ccf95d8c22528bcbed05758b48733ff0177d95e4ab89b522f83d4eaa1261de1296fab9

  • SSDEEP

    384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2+:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrC

Score
10/10
evasion

Malware Config

Targets

    • Target

      4e1df309908569dc5bd6866ba1b1b560_NeikiAnalytics.exe

    • Size

      72KB

    • MD5

      4e1df309908569dc5bd6866ba1b1b560

    • SHA1

      a9713a14de44c1e783d3514c304849ec754f2777

    • SHA256

      e036546cb000e3e95c0b3bf98a98940bc6fc602c953c493dc6d03c1dee2ca434

    • SHA512

      560234b4d0748266e5886c870710dced0d23ea496dc8de3f3615703502ccf95d8c22528bcbed05758b48733ff0177d95e4ab89b522f83d4eaa1261de1296fab9

    • SSDEEP

      384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2+:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrC

    Score
    10/10
    evasion

    • Modifies visibility of file extensions in Explorer

      evasion

    • Disables RegEdit via registry modification

      evasion

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks