Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
5c17fee3b900c27a977f497010234ed0_NEIKI
-
Size
84KB
-
Sample
240507-2zd4bafe83
-
MD5
5c17fee3b900c27a977f497010234ed0
-
SHA1
3beb3cc7470382c537ea755cfc1f130b0d7d2fd2
-
SHA256
02887a96fd842d6de12c49676f1e055dacd0371c67e94e73fe528ddea0b82099
-
SHA512
5a8cc4139d07a08fbbfd7c8d42c51d64777828ae69671ea750de37d448eb9cf0753da08f160f3bc2808803cbc61ce3ca4e36fb9f93c70c8c5ebeb6d2a16a725c
-
SSDEEP
1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q4xFrphgG:+nyiQSo+hgG
Behavioral task
behavioral1
Sample
5c17fee3b900c27a977f497010234ed0_NEIKI.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
5c17fee3b900c27a977f497010234ed0_NEIKI.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
5c17fee3b900c27a977f497010234ed0_NEIKI
-
Size
84KB
-
MD5
5c17fee3b900c27a977f497010234ed0
-
SHA1
3beb3cc7470382c537ea755cfc1f130b0d7d2fd2
-
SHA256
02887a96fd842d6de12c49676f1e055dacd0371c67e94e73fe528ddea0b82099
-
SHA512
5a8cc4139d07a08fbbfd7c8d42c51d64777828ae69671ea750de37d448eb9cf0753da08f160f3bc2808803cbc61ce3ca4e36fb9f93c70c8c5ebeb6d2a16a725c
-
SSDEEP
1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q4xFrphgG:+nyiQSo+hgG
Score9/10-
Renames multiple (3502) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-