Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ba163b089c79b875ca4dca32d3d46ac0_NeikiAnalytics.exe

  • Size

    3.0MB

  • Sample

    240614-m398laxfqf

  • MD5

    ba163b089c79b875ca4dca32d3d46ac0

  • SHA1

    ff6d685adb5c727f538a4142ee4d1b4099b10331

  • SHA256

    6f365a9e7bc4d712cc0603b2cdea7d20bb7bbef2f49706ef2e4e67340da51fc8

  • SHA512

    f69e222ff7d400e42fc90d985c9b65c21c606f6761d81653b82503205893e46ad0b0981ecc71b23106f132b4c402717d947220647b0adf77e34c935aa64ab080

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBGB/bSqz8b6LNX:sxX7QnxrloE5dpUppbVz8eLF

Malware Config

Targets

    • Target

      ba163b089c79b875ca4dca32d3d46ac0_NeikiAnalytics.exe

    • Size

      3.0MB

    • MD5

      ba163b089c79b875ca4dca32d3d46ac0

    • SHA1

      ff6d685adb5c727f538a4142ee4d1b4099b10331

    • SHA256

      6f365a9e7bc4d712cc0603b2cdea7d20bb7bbef2f49706ef2e4e67340da51fc8

    • SHA512

      f69e222ff7d400e42fc90d985c9b65c21c606f6761d81653b82503205893e46ad0b0981ecc71b23106f132b4c402717d947220647b0adf77e34c935aa64ab080

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBGB/bSqz8b6LNX:sxX7QnxrloE5dpUppbVz8eLF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks