Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

NEAS.270bc...JC.exe

windows7-x64

9

NEAS.270bc...JC.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.270bc1d681158d913ff8a9b92d32beb0_JC.exe

  • Size

    97KB

  • Sample

    231102-wyjphsdf7s

  • MD5

    270bc1d681158d913ff8a9b92d32beb0

  • SHA1

    c4796defe54e714774ec181552b47e98d54e6042

  • SHA256

    0187ff2005c4aa122e8d681fa99b3459e8c822d3dfeb1c03f25e48ecece407e2

  • SHA512

    30f9705d0c0cac9722c6e526669677ba63b2e320efc78378e51d824e89c0a2e7c7409256637dcd8997a999684f3de747cf875ade6f57b659b75036dc867ca69d

  • SSDEEP

    1536:W7ZhA7pApvOsOKkI47ZhA7pApvOsOKkIT:6e7Wp+e7WpZ

Score
9/10
ransomware

Malware Config

Targets

    • Target

      NEAS.270bc1d681158d913ff8a9b92d32beb0_JC.exe

    • Size

      97KB

    • MD5

      270bc1d681158d913ff8a9b92d32beb0

    • SHA1

      c4796defe54e714774ec181552b47e98d54e6042

    • SHA256

      0187ff2005c4aa122e8d681fa99b3459e8c822d3dfeb1c03f25e48ecece407e2

    • SHA512

      30f9705d0c0cac9722c6e526669677ba63b2e320efc78378e51d824e89c0a2e7c7409256637dcd8997a999684f3de747cf875ade6f57b659b75036dc867ca69d

    • SSDEEP

      1536:W7ZhA7pApvOsOKkI47ZhA7pApvOsOKkIT:6e7Wp+e7WpZ

    Score
    9/10
    ransomware

    • Renames multiple (1092) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Renames multiple (64) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks