Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

NEAS.aff30...20.exe

windows7-x64

9

NEAS.aff30...20.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.aff304cc057719fd11fc0963f6f2e020.exe

  • Size

    209KB

  • Sample

    231115-jfvmvaff3w

  • MD5

    aff304cc057719fd11fc0963f6f2e020

  • SHA1

    f95d14377df84f49db54b99b9de854d857b5629d

  • SHA256

    083778c7aeb3dac361e3df12de8bb1ea392ff8a4d8ee35c4b8e965724d5b8276

  • SHA512

    e9e480607adf0af1d1221cf1fd0447f2d48c8bc3485b59f28d349f3646fda9389d537ef0531f397fc7613d615b9e76f3aa97e5b5993add756c2d1f115fc03d6e

  • SSDEEP

    768:W7BlphA7pARFbhKKVeIuKVeIaCgx+qsaCgx+qs9lRlCaw85nd5ntAXJ2KfQQtkYl:W7ZhA7pApaX0aX09r5w8NdNoQpVQpD

Score
9/10
ransomware

Malware Config

Targets

    • Target

      NEAS.aff304cc057719fd11fc0963f6f2e020.exe

    • Size

      209KB

    • MD5

      aff304cc057719fd11fc0963f6f2e020

    • SHA1

      f95d14377df84f49db54b99b9de854d857b5629d

    • SHA256

      083778c7aeb3dac361e3df12de8bb1ea392ff8a4d8ee35c4b8e965724d5b8276

    • SHA512

      e9e480607adf0af1d1221cf1fd0447f2d48c8bc3485b59f28d349f3646fda9389d537ef0531f397fc7613d615b9e76f3aa97e5b5993add756c2d1f115fc03d6e

    • SSDEEP

      768:W7BlphA7pARFbhKKVeIuKVeIaCgx+qsaCgx+qs9lRlCaw85nd5ntAXJ2KfQQtkYl:W7ZhA7pApaX0aX09r5w8NdNoQpVQpD

    Score
    9/10
    ransomware

    • Renames multiple (1075) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Renames multiple (223) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks