Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
NEAS.2e6665c92f06bb9dd9e66b6f2e37ab60.exe
-
Size
51KB
-
Sample
231014-weelfsgg4x
-
MD5
2e6665c92f06bb9dd9e66b6f2e37ab60
-
SHA1
01fdda4ad547d6e832aaf488ee9bb19ec12047ea
-
SHA256
67580330dfc0ba07e4df3f00bcc652fc7658354998bfc71fbb04ac2972cc780e
-
SHA512
e3c9eb1621ef97dd0f2e2fc520d9bceb15526394da615f241806f1f467d8faaee9d7685575945fa3a3e18c1ef81b196619bea229264db24bd78141e3c402fc7f
-
SSDEEP
768:W7BlprpARFbho+//g2JWZRM0jvpJWZRM0jvp:W7ZrpApoYg2JWZRM0jvpJWZRM0jvp
Static task
static1
Behavioral task
behavioral1
Sample
NEAS.2e6665c92f06bb9dd9e66b6f2e37ab60.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
NEAS.2e6665c92f06bb9dd9e66b6f2e37ab60.exe
Resource
win10v2004-20230915-en
Malware Config
Targets
-
-
Target
NEAS.2e6665c92f06bb9dd9e66b6f2e37ab60.exe
-
Size
51KB
-
MD5
2e6665c92f06bb9dd9e66b6f2e37ab60
-
SHA1
01fdda4ad547d6e832aaf488ee9bb19ec12047ea
-
SHA256
67580330dfc0ba07e4df3f00bcc652fc7658354998bfc71fbb04ac2972cc780e
-
SHA512
e3c9eb1621ef97dd0f2e2fc520d9bceb15526394da615f241806f1f467d8faaee9d7685575945fa3a3e18c1ef81b196619bea229264db24bd78141e3c402fc7f
-
SSDEEP
768:W7BlprpARFbho+//g2JWZRM0jvpJWZRM0jvp:W7ZrpApoYg2JWZRM0jvpJWZRM0jvp
Score9/10-
Renames multiple (511) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-