Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
NEAS.9b534ecbc4a9069ebff40d7f4c785eac.exe
-
Size
199KB
-
Sample
231111-l47cnadb7s
-
MD5
9b534ecbc4a9069ebff40d7f4c785eac
-
SHA1
1828c6a854193d728c9b32095b5dde0383118975
-
SHA256
b1d8bb0411b32dd56ed10a9c49bbdeb13ea7f7e83df1294995c4058956e913bf
-
SHA512
e341561eeeb1316f38859eafc825f33050c73cad3b6d9c2c28ee0b9a03ec30312245b218d5b00e8b42fc1cb26bf2475ba44666434243ff337a703df608902ad1
-
SSDEEP
3072:6e7WpbAIuZAIuYSMjoqtMHfhfpYRY0Zk6zF+Q3F:RqBAIuZAIuDMVtM/8aE3F
Static task
static1
Behavioral task
behavioral1
Sample
NEAS.9b534ecbc4a9069ebff40d7f4c785eac.exe
Resource
win7-20231023-en
Behavioral task
behavioral2
Sample
NEAS.9b534ecbc4a9069ebff40d7f4c785eac.exe
Resource
win10v2004-20231023-en
Malware Config
Targets
-
-
Target
NEAS.9b534ecbc4a9069ebff40d7f4c785eac.exe
-
Size
199KB
-
MD5
9b534ecbc4a9069ebff40d7f4c785eac
-
SHA1
1828c6a854193d728c9b32095b5dde0383118975
-
SHA256
b1d8bb0411b32dd56ed10a9c49bbdeb13ea7f7e83df1294995c4058956e913bf
-
SHA512
e341561eeeb1316f38859eafc825f33050c73cad3b6d9c2c28ee0b9a03ec30312245b218d5b00e8b42fc1cb26bf2475ba44666434243ff337a703df608902ad1
-
SSDEEP
3072:6e7WpbAIuZAIuYSMjoqtMHfhfpYRY0Zk6zF+Q3F:RqBAIuZAIuDMVtM/8aE3F
Score9/10-
Renames multiple (134) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Renames multiple (224) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-