Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    95862838317736fc73fb3b544a5986a0_NeikiAnalytics.exe

  • Size

    3.0MB

  • Sample

    240614-bejj7ayepe

  • MD5

    95862838317736fc73fb3b544a5986a0

  • SHA1

    d87290e4a51c8ab2fe814521e546aaa9ec959098

  • SHA256

    21d391cdd14d379e1c182615619991685d5eea59f81d8fce667889d6f40de3f4

  • SHA512

    1c1c6afb967378aeea20e1bda1058c74993b2a20a7e4fe27de1c59ff3c94e919d878215b4ff395cf68c9ee54857d472f14cf72e24314b46e7da4a0bd308434cd

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBQB/bSqz8b6LNX:sxX7QnxrloE5dpUpLbVz8eLF

Malware Config

Targets

    • Target

      95862838317736fc73fb3b544a5986a0_NeikiAnalytics.exe

    • Size

      3.0MB

    • MD5

      95862838317736fc73fb3b544a5986a0

    • SHA1

      d87290e4a51c8ab2fe814521e546aaa9ec959098

    • SHA256

      21d391cdd14d379e1c182615619991685d5eea59f81d8fce667889d6f40de3f4

    • SHA512

      1c1c6afb967378aeea20e1bda1058c74993b2a20a7e4fe27de1c59ff3c94e919d878215b4ff395cf68c9ee54857d472f14cf72e24314b46e7da4a0bd308434cd

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBQB/bSqz8b6LNX:sxX7QnxrloE5dpUpLbVz8eLF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks