Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5c17fee3b900c27a977f497010234ed0_NEIKI

  • Size

    84KB

  • Sample

    240507-2zd4bafe83

  • MD5

    5c17fee3b900c27a977f497010234ed0

  • SHA1

    3beb3cc7470382c537ea755cfc1f130b0d7d2fd2

  • SHA256

    02887a96fd842d6de12c49676f1e055dacd0371c67e94e73fe528ddea0b82099

  • SHA512

    5a8cc4139d07a08fbbfd7c8d42c51d64777828ae69671ea750de37d448eb9cf0753da08f160f3bc2808803cbc61ce3ca4e36fb9f93c70c8c5ebeb6d2a16a725c

  • SSDEEP

    1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q4xFrphgG:+nyiQSo+hgG

Score
9/10

Malware Config

Targets

    • Target

      5c17fee3b900c27a977f497010234ed0_NEIKI

    • Size

      84KB

    • MD5

      5c17fee3b900c27a977f497010234ed0

    • SHA1

      3beb3cc7470382c537ea755cfc1f130b0d7d2fd2

    • SHA256

      02887a96fd842d6de12c49676f1e055dacd0371c67e94e73fe528ddea0b82099

    • SHA512

      5a8cc4139d07a08fbbfd7c8d42c51d64777828ae69671ea750de37d448eb9cf0753da08f160f3bc2808803cbc61ce3ca4e36fb9f93c70c8c5ebeb6d2a16a725c

    • SSDEEP

      1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q4xFrphgG:+nyiQSo+hgG

    Score
    9/10
    • Renames multiple (3502) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks