Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

NEAS.7a6f1...10.exe

windows7-x64

9

NEAS.7a6f1...10.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.7a6f1f2d7750beffd0aeb898237b9910.exe

  • Size

    62KB

  • Sample

    231111-tjjpvshg4y

  • MD5

    7a6f1f2d7750beffd0aeb898237b9910

  • SHA1

    2156461e0b9d837177a26560f370de8a426f1eea

  • SHA256

    70140106a0323a9c4ba92d590e0ee31df458bd790ef9c5d1bae79a1c81d7c6cf

  • SHA512

    2cf851d3582539abd354743c679649f285292cb112340bdc56bdaef42fe9dfb66e51327a2eb4d49bd615382dd3a17ac5e0a7c6ed23cf1f8c1d1f7decc582620c

  • SSDEEP

    768:W7BlpDpARFbhYQkQjjXP/gpPP/gp/7BlpDpARFbhYQkQjj8:W7ZDpApYbWjJ7ZDpApYbWj8

Score
9/10
ransomware

Malware Config

Targets

    • Target

      NEAS.7a6f1f2d7750beffd0aeb898237b9910.exe

    • Size

      62KB

    • MD5

      7a6f1f2d7750beffd0aeb898237b9910

    • SHA1

      2156461e0b9d837177a26560f370de8a426f1eea

    • SHA256

      70140106a0323a9c4ba92d590e0ee31df458bd790ef9c5d1bae79a1c81d7c6cf

    • SHA512

      2cf851d3582539abd354743c679649f285292cb112340bdc56bdaef42fe9dfb66e51327a2eb4d49bd615382dd3a17ac5e0a7c6ed23cf1f8c1d1f7decc582620c

    • SSDEEP

      768:W7BlpDpARFbhYQkQjjXP/gpPP/gp/7BlpDpARFbhYQkQjj8:W7ZDpApYbWjJ7ZDpApYbWj8

    Score
    9/10
    ransomware

    • Renames multiple (2851) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Renames multiple (608) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks