Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

1a7ac4e033...cs.exe

windows7-x64

7

1a7ac4e033...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1a7ac4e0337aab34e11e80fe0338c95e6da82321a85fc8aed64a872c89b7407b_NeikiAnalytics.exe

  • Size

    134KB

  • Sample

    240625-2cxl5szcpj

  • MD5

    482304033e0a2a6d199998797037f700

  • SHA1

    7dd69ac2d3deba20c90fae9369ea2bce81310c52

  • SHA256

    1a7ac4e0337aab34e11e80fe0338c95e6da82321a85fc8aed64a872c89b7407b

  • SHA512

    08f9decd275cb2857b1cf0e77e87c8f84561a2255b71a792fcf9590cb935637ad75f1a8d841da3ab691613f49611119929545ea072424f63a88f61a4443e20f5

  • SSDEEP

    1536:cGYU/W2/HG6QMauSV3ixJHABLrmhH7i99ROOg00GqMIK7aGZh3EIM:cfU/WF6QMauSuiWNi97Ol0007NZ6IM

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      1a7ac4e0337aab34e11e80fe0338c95e6da82321a85fc8aed64a872c89b7407b_NeikiAnalytics.exe

    • Size

      134KB

    • MD5

      482304033e0a2a6d199998797037f700

    • SHA1

      7dd69ac2d3deba20c90fae9369ea2bce81310c52

    • SHA256

      1a7ac4e0337aab34e11e80fe0338c95e6da82321a85fc8aed64a872c89b7407b

    • SHA512

      08f9decd275cb2857b1cf0e77e87c8f84561a2255b71a792fcf9590cb935637ad75f1a8d841da3ab691613f49611119929545ea072424f63a88f61a4443e20f5

    • SSDEEP

      1536:cGYU/W2/HG6QMauSV3ixJHABLrmhH7i99ROOg00GqMIK7aGZh3EIM:cfU/WF6QMauSuiWNi97Ol0007NZ6IM

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks