Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2d5cd13a1fc63739d3dc96005a7d2440_NEIKI
-
Size
71KB
-
Sample
240508-ymb7eace7v
-
MD5
2d5cd13a1fc63739d3dc96005a7d2440
-
SHA1
9859c274ffc5d1182222b700cba8148834b1806a
-
SHA256
8d3f610407c9f59e19283748bf129ffc0d41ea8bbce4341682f267c334f866e1
-
SHA512
45568834f01eca1949adf86519cb1e3b0ba62f522abfbd66410990109be32f2d3c0fdb27fc36593321ddf53ba063acfaba719334c53b313f2e239307d9f6c4eb
-
SSDEEP
768:W7BlphA7pARFbhVSpFCpFi/1KxAzMlcH3GEHUAn3EM2utGHtGiZh:W7ZhA7pApVyCi/1iAzFH37HJ0XuYvZh
Static task
static1
Behavioral task
behavioral1
Sample
2d5cd13a1fc63739d3dc96005a7d2440_NEIKI.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2d5cd13a1fc63739d3dc96005a7d2440_NEIKI.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2d5cd13a1fc63739d3dc96005a7d2440_NEIKI
-
Size
71KB
-
MD5
2d5cd13a1fc63739d3dc96005a7d2440
-
SHA1
9859c274ffc5d1182222b700cba8148834b1806a
-
SHA256
8d3f610407c9f59e19283748bf129ffc0d41ea8bbce4341682f267c334f866e1
-
SHA512
45568834f01eca1949adf86519cb1e3b0ba62f522abfbd66410990109be32f2d3c0fdb27fc36593321ddf53ba063acfaba719334c53b313f2e239307d9f6c4eb
-
SSDEEP
768:W7BlphA7pARFbhVSpFCpFi/1KxAzMlcH3GEHUAn3EM2utGHtGiZh:W7ZhA7pApVyCi/1iAzFH37HJ0XuYvZh
Score9/10-
Renames multiple (441) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-