Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
61fed1c6d28b5f76bd832e0c6e8e5f40_NEAS
-
Size
313KB
-
Sample
240507-emx94aca59
-
MD5
61fed1c6d28b5f76bd832e0c6e8e5f40
-
SHA1
5f030c5c0de31e500ba2c66bfdb157c0fbd928eb
-
SHA256
5c811b33dcbf0e17d4180d63fabb6ba084c0ddaca666ae470cab98761ad92393
-
SHA512
7de5e881b2980569be05f53bf13444ae1e34bc610613f4d64bf392197a00910132eba844949d7e52f7e20b4e60762cb5bd808f0287c035a065d40846c944a09a
-
SSDEEP
6144:JiQSo1EZGtKgZGtK/CAIuZAIuExQSo1EZGtKgZGtK/CAIuZAIuZ:AQtyZGtKgZGtK/CAIuZAIuExQtyZGtKF
Behavioral task
behavioral1
Sample
61fed1c6d28b5f76bd832e0c6e8e5f40_NEAS.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
61fed1c6d28b5f76bd832e0c6e8e5f40_NEAS.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
61fed1c6d28b5f76bd832e0c6e8e5f40_NEAS
-
Size
313KB
-
MD5
61fed1c6d28b5f76bd832e0c6e8e5f40
-
SHA1
5f030c5c0de31e500ba2c66bfdb157c0fbd928eb
-
SHA256
5c811b33dcbf0e17d4180d63fabb6ba084c0ddaca666ae470cab98761ad92393
-
SHA512
7de5e881b2980569be05f53bf13444ae1e34bc610613f4d64bf392197a00910132eba844949d7e52f7e20b4e60762cb5bd808f0287c035a065d40846c944a09a
-
SSDEEP
6144:JiQSo1EZGtKgZGtK/CAIuZAIuExQSo1EZGtKgZGtK/CAIuZAIuZ:AQtyZGtKgZGtK/CAIuZAIuExQtyZGtKF
Score9/10-
Renames multiple (2850) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-