Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
NEAS.ddb12951fc522017ddb759f32943d4b0.exe
-
Size
76KB
-
Sample
231014-j7vf6aah59
-
MD5
ddb12951fc522017ddb759f32943d4b0
-
SHA1
ef1be7b2b98eeaf0f1cade1d9bbf012b1d7b0d6e
-
SHA256
2d1a2611d73854fcfb6532cea1344aa0780e9eaf5b9cdbfca9e3be20c035da62
-
SHA512
e56e7db12820b5fa655d0239240092237d4c649bb7f4758988222b88aed3ce612c82a7db0961fbd4cd7a853b8a83ee2350e74c5b38cc610dde68d166f460449b
-
SSDEEP
768:W7BlphA7pARFbhM0KJQlQ065a/e4/evPEG4PEGwnc/y:W7ZhA7pApMNcH6gW4Wvs9szn5
Static task
static1
Behavioral task
behavioral1
Sample
NEAS.ddb12951fc522017ddb759f32943d4b0.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
NEAS.ddb12951fc522017ddb759f32943d4b0.exe
Resource
win10v2004-20230915-en
Malware Config
Targets
-
-
Target
NEAS.ddb12951fc522017ddb759f32943d4b0.exe
-
Size
76KB
-
MD5
ddb12951fc522017ddb759f32943d4b0
-
SHA1
ef1be7b2b98eeaf0f1cade1d9bbf012b1d7b0d6e
-
SHA256
2d1a2611d73854fcfb6532cea1344aa0780e9eaf5b9cdbfca9e3be20c035da62
-
SHA512
e56e7db12820b5fa655d0239240092237d4c649bb7f4758988222b88aed3ce612c82a7db0961fbd4cd7a853b8a83ee2350e74c5b38cc610dde68d166f460449b
-
SSDEEP
768:W7BlphA7pARFbhM0KJQlQ065a/e4/evPEG4PEGwnc/y:W7ZhA7pApMNcH6gW4Wvs9szn5
Score9/10-
Renames multiple (455) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-