Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
9efbfef77eef3917036cb649412f1f255a31450421e9050b4fd002ea6025e085_NeikiAnalytics.exe
-
Size
1.5MB
-
Sample
240628-s3n81swalb
-
MD5
e8acb1b4daced520e78256c9a333e300
-
SHA1
11145376b3fad615871732fda10c83ec2760f04b
-
SHA256
9efbfef77eef3917036cb649412f1f255a31450421e9050b4fd002ea6025e085
-
SHA512
51a046fc859e9c16abe308410664e24e3da5637ec0fe9134184d795fef1f0d508f75f2908805a398eaf3c4021e6bd5953e21ae838ae091b10a02f1e6495b04bb
-
SSDEEP
49152:5DFSkBKEK4Vkl9srv6sQJ3fp5jpVP4Yfc:5DFiEmfjJPXj7o
Behavioral task
behavioral1
Sample
9efbfef77eef3917036cb649412f1f255a31450421e9050b4fd002ea6025e085_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
9efbfef77eef3917036cb649412f1f255a31450421e9050b4fd002ea6025e085_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
9efbfef77eef3917036cb649412f1f255a31450421e9050b4fd002ea6025e085_NeikiAnalytics.exe
-
Size
1.5MB
-
MD5
e8acb1b4daced520e78256c9a333e300
-
SHA1
11145376b3fad615871732fda10c83ec2760f04b
-
SHA256
9efbfef77eef3917036cb649412f1f255a31450421e9050b4fd002ea6025e085
-
SHA512
51a046fc859e9c16abe308410664e24e3da5637ec0fe9134184d795fef1f0d508f75f2908805a398eaf3c4021e6bd5953e21ae838ae091b10a02f1e6495b04bb
-
SSDEEP
49152:5DFSkBKEK4Vkl9srv6sQJ3fp5jpVP4Yfc:5DFiEmfjJPXj7o
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-