Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

1219fefe55...KI.exe

windows7-x64

9

1219fefe55...KI.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1219fefe55150361872540a4f600d830_NEIKI

  • Size

    78KB

  • Sample

    240507-ybvjlseg26

  • MD5

    1219fefe55150361872540a4f600d830

  • SHA1

    3b0faa98c00f580fdfe55df7fa3cfb9efdae2a80

  • SHA256

    346164fdc5c43a8049fd0bdc082f31f1af81d840330d87c7a6b76c37c31a19df

  • SHA512

    ddfcc191c15d31803ec6fd98f28870de61f4edd5edbbc731ea065bca2dacaf6c350e507bbbb6da1733d1b22c4723ed7072687171b79a59a8a2e87bc78188dc44

  • SSDEEP

    1536:W7ZDpApYbWjIlE77ufL6YRYvQFrxFrN6v:6DWpwE7oL6uFrDrA

Score
9/10
ransomware

Malware Config

Targets

    • Target

      1219fefe55150361872540a4f600d830_NEIKI

    • Size

      78KB

    • MD5

      1219fefe55150361872540a4f600d830

    • SHA1

      3b0faa98c00f580fdfe55df7fa3cfb9efdae2a80

    • SHA256

      346164fdc5c43a8049fd0bdc082f31f1af81d840330d87c7a6b76c37c31a19df

    • SHA512

      ddfcc191c15d31803ec6fd98f28870de61f4edd5edbbc731ea065bca2dacaf6c350e507bbbb6da1733d1b22c4723ed7072687171b79a59a8a2e87bc78188dc44

    • SSDEEP

      1536:W7ZDpApYbWjIlE77ufL6YRYvQFrxFrN6v:6DWpwE7oL6uFrDrA

    Score
    9/10
    ransomware

    • Renames multiple (514) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks