Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9370a4884dca970228b6d2408b64c1d0_NeikiAnalytics.exe

  • Size

    1.6MB

  • Sample

    240614-arz72a1emp

  • MD5

    9370a4884dca970228b6d2408b64c1d0

  • SHA1

    27b9416b5c6120046c37de9ea6c6784ef7ca901a

  • SHA256

    da682639d67b3f152949bccca48605093ddce317da486f47755b0d5c812ec7fd

  • SHA512

    f7ca92f92801f604f7ba3bc3e7ad618f1c6599e51dbc7c2df7aeec072f3c5530c0c86fdcb4e71e0d722b151ec9eb32d7aa374f110f744d4822b5605ab86c7952

  • SSDEEP

    24576:RVIl/WDGCi7/qkatXBF672E55I6PFw12TJ1tmyNJeo55FgrI1y4AMnXhtChZ7N71:ROdWCCi7/rahF3OioF5M+10CHqL5

Score
10/10

Malware Config

Targets

    • Target

      9370a4884dca970228b6d2408b64c1d0_NeikiAnalytics.exe

    • Size

      1.6MB

    • MD5

      9370a4884dca970228b6d2408b64c1d0

    • SHA1

      27b9416b5c6120046c37de9ea6c6784ef7ca901a

    • SHA256

      da682639d67b3f152949bccca48605093ddce317da486f47755b0d5c812ec7fd

    • SHA512

      f7ca92f92801f604f7ba3bc3e7ad618f1c6599e51dbc7c2df7aeec072f3c5530c0c86fdcb4e71e0d722b151ec9eb32d7aa374f110f744d4822b5605ab86c7952

    • SSDEEP

      24576:RVIl/WDGCi7/qkatXBF672E55I6PFw12TJ1tmyNJeo55FgrI1y4AMnXhtChZ7N71:ROdWCCi7/rahF3OioF5M+10CHqL5

    Score
    10/10
    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks