Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

42a8a82ff3...cs.exe

windows7-x64

10

42a8a82ff3...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    42a8a82ff34b250a18e6875485455ba0_NeikiAnalytics.exe

  • Size

    72KB

  • Sample

    240612-zk9kkatclr

  • MD5

    42a8a82ff34b250a18e6875485455ba0

  • SHA1

    9261de4260a95047c68fd9f3e6a3fc6f985f922b

  • SHA256

    3a151d05bc97d5bc8b4573674e5cda89905c34449628de5e4b4a6a3c9c6bcb7d

  • SHA512

    ce62711eed865745346e7bcbcb8d79d5362732a9d6872a0ef0501e289e3cd7f49fd51e0f95baa5b23da29de7d7061ec8b31721909aa427fd4699af64cd3fe88f

  • SSDEEP

    384:y6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2c:ypQNwC3BEddsEqOt/hyJF+x3BEJwRrQ

Score
10/10
evasion

Malware Config

Targets

    • Target

      42a8a82ff34b250a18e6875485455ba0_NeikiAnalytics.exe

    • Size

      72KB

    • MD5

      42a8a82ff34b250a18e6875485455ba0

    • SHA1

      9261de4260a95047c68fd9f3e6a3fc6f985f922b

    • SHA256

      3a151d05bc97d5bc8b4573674e5cda89905c34449628de5e4b4a6a3c9c6bcb7d

    • SHA512

      ce62711eed865745346e7bcbcb8d79d5362732a9d6872a0ef0501e289e3cd7f49fd51e0f95baa5b23da29de7d7061ec8b31721909aa427fd4699af64cd3fe88f

    • SSDEEP

      384:y6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2c:ypQNwC3BEddsEqOt/hyJF+x3BEJwRrQ

    Score
    10/10
    evasion

    • Modifies visibility of file extensions in Explorer

      evasion

    • Disables RegEdit via registry modification

      evasion

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks