Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
6550ca547134c9612e11eed88658933ef654bdb4c43d38bca9af0d315a91b313_NeikiAnalytics.exe
-
Size
689KB
-
Sample
240629-fcz7dathnr
-
MD5
763dd6d5d550ebfc7f3270f1505a9960
-
SHA1
652870efed555125e3f97263c08d00a65107e447
-
SHA256
6550ca547134c9612e11eed88658933ef654bdb4c43d38bca9af0d315a91b313
-
SHA512
ff8589591fcdad2d0bc1615b5f17814499db42581ca439fc579be1be8ae66f4a604785b3bf2e9838dac15f9e6402ce8692ddcf6c3fc2466ecc96a2a131b37ca5
-
SSDEEP
12288:OWji9BspKvTc2+gi2pBQqTpornB8s7yjxkw2cM2pq1p5YfFP:Csp4ThLnhporCs8k3Epq1p5aP
Malware Config
Targets
-
-
Target
6550ca547134c9612e11eed88658933ef654bdb4c43d38bca9af0d315a91b313_NeikiAnalytics.exe
-
Size
689KB
-
MD5
763dd6d5d550ebfc7f3270f1505a9960
-
SHA1
652870efed555125e3f97263c08d00a65107e447
-
SHA256
6550ca547134c9612e11eed88658933ef654bdb4c43d38bca9af0d315a91b313
-
SHA512
ff8589591fcdad2d0bc1615b5f17814499db42581ca439fc579be1be8ae66f4a604785b3bf2e9838dac15f9e6402ce8692ddcf6c3fc2466ecc96a2a131b37ca5
-
SSDEEP
12288:OWji9BspKvTc2+gi2pBQqTpornB8s7yjxkw2cM2pq1p5YfFP:Csp4ThLnhporCs8k3Epq1p5aP
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-