Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2fe200e739f701df965c70a7edf3c4f4927c4939d95c858e3ce6826523dec2ac_NeikiAnalytics.exe

  • Size

    2.2MB

  • Sample

    240701-db99vatfme

  • MD5

    f96d218f8a2c1a5b3deca4008ca57f00

  • SHA1

    ccf5bd9baf33bc344b851e62bdcedd85af1a0b36

  • SHA256

    2fe200e739f701df965c70a7edf3c4f4927c4939d95c858e3ce6826523dec2ac

  • SHA512

    b18065b40edc355400096414f1be905664e9296694f634bd6e02ccb2f91629de3388886784d48971fbb07c9429f1d620096b947fc01bb8cf40aabc39c022a322

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pCkc30JqMopOm:NABY

Malware Config

Targets

    • Target

      2fe200e739f701df965c70a7edf3c4f4927c4939d95c858e3ce6826523dec2ac_NeikiAnalytics.exe

    • Size

      2.2MB

    • MD5

      f96d218f8a2c1a5b3deca4008ca57f00

    • SHA1

      ccf5bd9baf33bc344b851e62bdcedd85af1a0b36

    • SHA256

      2fe200e739f701df965c70a7edf3c4f4927c4939d95c858e3ce6826523dec2ac

    • SHA512

      b18065b40edc355400096414f1be905664e9296694f634bd6e02ccb2f91629de3388886784d48971fbb07c9429f1d620096b947fc01bb8cf40aabc39c022a322

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pCkc30JqMopOm:NABY

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.