Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
8Static
static
860f5a24561...cs.exe
windows7-x64
760f5a24561...cs.exe
windows10-2004-x64
7$PLUGINSDI...ns.dll
windows7-x64
3$PLUGINSDI...ns.dll
windows10-2004-x64
3$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3example.xlsm
windows7-x64
1example.xlsm
windows10-2004-x64
1mbslave-us...l.html
windows7-x64
1mbslave-us...l.html
windows10-2004-x64
1mbslave.exe
windows7-x64
1mbslave.exe
windows10-2004-x64
1General
-
Target
60f5a2456128bed5eab1bbefcdedbf242dbb234b933ba932b6a72aa991748233_NeikiAnalytics.exe
-
Size
1.0MB
-
Sample
240629-evta4s1ala
-
MD5
f3e6218c911e7f421987734416a50680
-
SHA1
0fcd630707cc1aa638ab72aaddca987f8cc68d1f
-
SHA256
60f5a2456128bed5eab1bbefcdedbf242dbb234b933ba932b6a72aa991748233
-
SHA512
40ae26e49ec28a4fc4f612ac399bca923b88570870d67fd1b7fec5b2243900aabc36944e825aabfa45183bac262e6cffd56e06518a95103dd674d70ebdc1d488
-
SSDEEP
24576:NbmqH7DTBsDB0Fgh59sis3T0nVUCca5rdFq/vAqA:lZHtsVNhQD0DcaJzMvC
Behavioral task
behavioral1
Sample
60f5a2456128bed5eab1bbefcdedbf242dbb234b933ba932b6a72aa991748233_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
60f5a2456128bed5eab1bbefcdedbf242dbb234b933ba932b6a72aa991748233_NeikiAnalytics.exe
Resource
win10v2004-20240611-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win7-20240419-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240508-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral7
Sample
example.xlsm
Resource
win7-20240220-en
Behavioral task
behavioral8
Sample
example.xlsm
Resource
win10v2004-20240508-en
Behavioral task
behavioral9
Sample
mbslave-user-manual.html
Resource
win7-20240508-en
Behavioral task
behavioral10
Sample
mbslave-user-manual.html
Resource
win10v2004-20240611-en
Behavioral task
behavioral11
Sample
mbslave.exe
Resource
win7-20240508-en
Behavioral task
behavioral12
Sample
mbslave.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
60f5a2456128bed5eab1bbefcdedbf242dbb234b933ba932b6a72aa991748233_NeikiAnalytics.exe
-
Size
1.0MB
-
MD5
f3e6218c911e7f421987734416a50680
-
SHA1
0fcd630707cc1aa638ab72aaddca987f8cc68d1f
-
SHA256
60f5a2456128bed5eab1bbefcdedbf242dbb234b933ba932b6a72aa991748233
-
SHA512
40ae26e49ec28a4fc4f612ac399bca923b88570870d67fd1b7fec5b2243900aabc36944e825aabfa45183bac262e6cffd56e06518a95103dd674d70ebdc1d488
-
SSDEEP
24576:NbmqH7DTBsDB0Fgh59sis3T0nVUCca5rdFq/vAqA:lZHtsVNhQD0DcaJzMvC
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/InstallOptions.dll
-
Size
15KB
-
MD5
ece25721125d55aa26cdfe019c871476
-
SHA1
b87685ae482553823bf95e73e790de48dc0c11ba
-
SHA256
c7fef6457989d97fecc0616a69947927da9d8c493f7905dc8475c748f044f3cf
-
SHA512
4e384735d03c943f5eb3396bb3a9cb42c9d8a5479fe2871de5b8bc18db4bbd6e2c5f8fd71b6840512a7249e12a1c63e0e760417e4baa3dc30f51375588410480
-
SSDEEP
384:EXsC43tPegZ3eBaRwCPOYY7nNYXC06/Yosa:EXJTgZ3eBTCmrnNA5p
Score3/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
12KB
-
MD5
cff85c549d536f651d4fb8387f1976f2
-
SHA1
d41ce3a5ff609df9cf5c7e207d3b59bf8a48530e
-
SHA256
8dc562cda7217a3a52db898243de3e2ed68b80e62ddcb8619545ed0b4e7f65a8
-
SHA512
531d6328daf3b86d85556016d299798fa06fefc81604185108a342d000e203094c8c12226a12bd6e1f89b0db501fb66f827b610d460b933bd4ab936ac2fd8a88
-
SSDEEP
192:Zjvco0qWTlt70m5Aj/lQ0sEWD/wtYbBHFNaDybC7y+XBz0QPi:FHQlt70mij/lQRv/9VMjzr
Score3/10 -
-
-
Target
example.xlsm
-
Size
39KB
-
MD5
d59441da4e58d0731ab61d0e7218292c
-
SHA1
8e620502c572db0d1d4bebff438e6ebdf83a9220
-
SHA256
86b5870a1445dc4cf5c0289d936d1477e59202587932998ea644d43ff4290815
-
SHA512
e3a6d83fc5ce715f4471a358c2a1a8aba438af4bd5e963c187c50e5b4f8288e0c1334b41942cd3569fec5e689fc7978b481726a461c454b41223808e908f04c1
-
SSDEEP
768:oJKBP+sEizdzO6vpTxcaDMnF0AeXyq3Rl8lcSJ9:oJiWsESzwqWF0AVlcC9
Score1/10 -
-
-
Target
mbslave-user-manual.html
-
Size
136KB
-
MD5
1311cd7f50d274e79abfab89451534c8
-
SHA1
0e2c267cf138680fa5f6f2940c42ed4177a5fc19
-
SHA256
18a17545c29706b9aae2ed89c3957a70caa89ed6896f557cec7d2023c7574006
-
SHA512
eb8ac4db565ff68e4910840bf10348a88a9f8a176b18a040c7d205c9433f8e5c97e0d08313edde7d9629e263965f235124b675666dfbb01ffaff6762020e9ca2
-
SSDEEP
1536:YOS9225nyI1DpQb2Do7D329MtYyqm3kbGnPyvSqCHec01ZM+4Ey6/+f2mE904oyW:Q915u6bGnivF1C6/TPlJjgcoddw6r9
Score1/10 -
-
-
Target
mbslave.exe
-
Size
1.4MB
-
MD5
0dff3bfdc918cae7fe2fa880289390ba
-
SHA1
9a3dda46a25efe7999520ed620ce4e3fb1f984a9
-
SHA256
fd755afe975020555ddeb86752f0ca58342bdd9e22689c517fc26b158db13471
-
SHA512
80b84de4fd1ec851e93962e670162aa152ff22c843febc496da91f8d49442c22756b549ace4b4bcdc634943105cb631b22f7e2ac56f4beead9580f39213ad103
-
SSDEEP
24576:fa4cvaQq6AaOmvxslujeZijXyME1pbNiBk:fa7L4mvGluFux3Aq
Score1/10 -