Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
1dacba7bb6884fb9e43f2bac05de2f60_NEIKI
-
Size
59KB
-
Sample
240507-ywjmvagb38
-
MD5
1dacba7bb6884fb9e43f2bac05de2f60
-
SHA1
796bd40aa8a607940f0a90b882d645791ca108c6
-
SHA256
4e386af94a130c62119d166a4a3009ed8ca8ac0a266a042061f436906518f980
-
SHA512
e9444751ebba716304de43f632eeda4d5c0c4b1a2dc1cb6e3ccb2b29fbb9f155f55a9ecd0adec55f40ebd3b0eee5171d387ec790ecee13bb742d7f7d1e1737ad
-
SSDEEP
768:W7BlpDpARFbhYQkQjjLaMaJjYJIJDYJIJJZwNq4ukJTkJJ:W7ZDpApYbWjy0e+eaNq0T0J
Static task
static1
Behavioral task
behavioral1
Sample
1dacba7bb6884fb9e43f2bac05de2f60_NEIKI.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
1dacba7bb6884fb9e43f2bac05de2f60_NEIKI.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
1dacba7bb6884fb9e43f2bac05de2f60_NEIKI
-
Size
59KB
-
MD5
1dacba7bb6884fb9e43f2bac05de2f60
-
SHA1
796bd40aa8a607940f0a90b882d645791ca108c6
-
SHA256
4e386af94a130c62119d166a4a3009ed8ca8ac0a266a042061f436906518f980
-
SHA512
e9444751ebba716304de43f632eeda4d5c0c4b1a2dc1cb6e3ccb2b29fbb9f155f55a9ecd0adec55f40ebd3b0eee5171d387ec790ecee13bb742d7f7d1e1737ad
-
SSDEEP
768:W7BlpDpARFbhYQkQjjLaMaJjYJIJDYJIJJZwNq4ukJTkJJ:W7ZDpApYbWjy0e+eaNq0T0J
Score9/10-
Renames multiple (3543) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-