Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

NEAS.0c089...c0.exe

windows7-x64

9

NEAS.0c089...c0.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.0c089a25758fb20c0204fa0b4986bec0.exe

  • Size

    110KB

  • Sample

    231022-vabtbsda22

  • MD5

    0c089a25758fb20c0204fa0b4986bec0

  • SHA1

    7e30346365d663dde28baa2276cb7d8f2b5ca12f

  • SHA256

    089c120e8973d5cf6732ac029e70283e46c7e05332d0cac981085838f0b11cda

  • SHA512

    bfbc78cccc7b0082fb32b94a7b9c18e4f48963371ab50455e3b865fd4d3ea0b1f17f977ecf5310abf4db3dc223995818984a8ec775fa1a6c9ec72a9b24ff0f22

  • SSDEEP

    1536:W7ZhA7pApH9QHwtRF9ESWu0SWutlggalggA3X4lhkbw3Mtr0sVxfwH:6e7WpHIyRF9ESWu0SWuDmSXrw3Mtr0sK

Score
9/10
ransomware

Malware Config

Targets

    • Target

      NEAS.0c089a25758fb20c0204fa0b4986bec0.exe

    • Size

      110KB

    • MD5

      0c089a25758fb20c0204fa0b4986bec0

    • SHA1

      7e30346365d663dde28baa2276cb7d8f2b5ca12f

    • SHA256

      089c120e8973d5cf6732ac029e70283e46c7e05332d0cac981085838f0b11cda

    • SHA512

      bfbc78cccc7b0082fb32b94a7b9c18e4f48963371ab50455e3b865fd4d3ea0b1f17f977ecf5310abf4db3dc223995818984a8ec775fa1a6c9ec72a9b24ff0f22

    • SSDEEP

      1536:W7ZhA7pApH9QHwtRF9ESWu0SWutlggalggA3X4lhkbw3Mtr0sVxfwH:6e7WpHIyRF9ESWu0SWuDmSXrw3Mtr0sK

    Score
    9/10
    ransomware

    • Renames multiple (1895) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Renames multiple (242) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks