Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
483070d9693222699f5c0a4ca47fb24198b8f6b44295bd6ef1559b9c442ec61a_NeikiAnalytics.exe
-
Size
352KB
-
Sample
240701-lp951avakc
-
MD5
04fa6d8d01a6acb887a3ee37f26b27e0
-
SHA1
003fc3fea83e186b80dbb16c41c9286150ac0464
-
SHA256
483070d9693222699f5c0a4ca47fb24198b8f6b44295bd6ef1559b9c442ec61a
-
SHA512
69393262df63f09b28a260668304431275dfa80a533f36f83fc31f7789efe33c25cbc91bfc6a293bac21914135239f2e082d26e3c0c08a206d2bc582b97c4ea8
-
SSDEEP
6144:ntKe6YiDdv3m3mgKHI3HWTXceq1bbLmRHcAVgL8zhYrT4yvZDZll:ntKe6Zv23YemcR1bbLmRNO8zyrTDNZ
Malware Config
Targets
-
-
Target
483070d9693222699f5c0a4ca47fb24198b8f6b44295bd6ef1559b9c442ec61a_NeikiAnalytics.exe
-
Size
352KB
-
MD5
04fa6d8d01a6acb887a3ee37f26b27e0
-
SHA1
003fc3fea83e186b80dbb16c41c9286150ac0464
-
SHA256
483070d9693222699f5c0a4ca47fb24198b8f6b44295bd6ef1559b9c442ec61a
-
SHA512
69393262df63f09b28a260668304431275dfa80a533f36f83fc31f7789efe33c25cbc91bfc6a293bac21914135239f2e082d26e3c0c08a206d2bc582b97c4ea8
-
SSDEEP
6144:ntKe6YiDdv3m3mgKHI3HWTXceq1bbLmRHcAVgL8zhYrT4yvZDZll:ntKe6Zv23YemcR1bbLmRNO8zyrTDNZ
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1