Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

2d5cd13a1f...KI.exe

windows7-x64

9

2d5cd13a1f...KI.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2d5cd13a1fc63739d3dc96005a7d2440_NEIKI

  • Size

    71KB

  • Sample

    240508-ymb7eace7v

  • MD5

    2d5cd13a1fc63739d3dc96005a7d2440

  • SHA1

    9859c274ffc5d1182222b700cba8148834b1806a

  • SHA256

    8d3f610407c9f59e19283748bf129ffc0d41ea8bbce4341682f267c334f866e1

  • SHA512

    45568834f01eca1949adf86519cb1e3b0ba62f522abfbd66410990109be32f2d3c0fdb27fc36593321ddf53ba063acfaba719334c53b313f2e239307d9f6c4eb

  • SSDEEP

    768:W7BlphA7pARFbhVSpFCpFi/1KxAzMlcH3GEHUAn3EM2utGHtGiZh:W7ZhA7pApVyCi/1iAzFH37HJ0XuYvZh

Score
9/10
ransomware

Malware Config

Targets

    • Target

      2d5cd13a1fc63739d3dc96005a7d2440_NEIKI

    • Size

      71KB

    • MD5

      2d5cd13a1fc63739d3dc96005a7d2440

    • SHA1

      9859c274ffc5d1182222b700cba8148834b1806a

    • SHA256

      8d3f610407c9f59e19283748bf129ffc0d41ea8bbce4341682f267c334f866e1

    • SHA512

      45568834f01eca1949adf86519cb1e3b0ba62f522abfbd66410990109be32f2d3c0fdb27fc36593321ddf53ba063acfaba719334c53b313f2e239307d9f6c4eb

    • SSDEEP

      768:W7BlphA7pARFbhVSpFCpFi/1KxAzMlcH3GEHUAn3EM2utGHtGiZh:W7ZhA7pApVyCi/1iAzFH37HJ0XuYvZh

    Score
    9/10
    ransomware

    • Renames multiple (441) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks