5ccd390f07c1da3f45447210a1a143f859e5077c20e0baaeaa1caf812ab77c20 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

NEAS.6d5eb...c0.exe

windows7-x64

9

NEAS.6d5eb...c0.exe

windows10-2004-x64

4

Sharing

General

Target

NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
Size

370KB
Sample

231013-y8ffysaf6w
MD5

6d5ebc181ce8796011da6253748b4ec0
SHA1

d93e00bcce5b371e7a98f7864131bf6f90079e09
SHA256

5ccd390f07c1da3f45447210a1a143f859e5077c20e0baaeaa1caf812ab77c20
SHA512

5be289f884fae79edc7c8fd6401396bb466aef6b5e3b61519409f170e7292b30c943cb01046d3744d63436a41f2f543df63bc60661e2f884909af38f3dce9283
SSDEEP

6144:Rq+SWu0SWua57h9N+O72TRLM7rJf+pKWebwXDFz39S9B4QOoNlzz5z2:rh9Nf72TRLOf+pKWebwXNtS9B4QOoDzQ

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

NEAS.6d5ebc181ce8796011da6253748b4ec0.exe

Resource

win7-20230831-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

NEAS.6d5ebc181ce8796011da6253748b4ec0.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
- Size
  
  370KB
- MD5
  
  6d5ebc181ce8796011da6253748b4ec0
- SHA1
  
  d93e00bcce5b371e7a98f7864131bf6f90079e09
- SHA256
  
  5ccd390f07c1da3f45447210a1a143f859e5077c20e0baaeaa1caf812ab77c20
- SHA512
  
  5be289f884fae79edc7c8fd6401396bb466aef6b5e3b61519409f170e7292b30c943cb01046d3744d63436a41f2f543df63bc60661e2f884909af38f3dce9283
- SSDEEP
  
  6144:Rq+SWu0SWua57h9N+O72TRLM7rJf+pKWebwXDFz39S9B4QOoNlzz5z2:rh9Nf72TRLOf+pKWebwXNtS9B4QOoDzQ
Score

9^/10

ransomware
- Renames multiple (79) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy