Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
dcf7ecdd68c63cf603ec6891d84fb73a_NEIKI
-
Size
107KB
-
Sample
240509-pvx96saa4z
-
MD5
dcf7ecdd68c63cf603ec6891d84fb73a
-
SHA1
204b817a68feb12d6b028919b6e4e2ab727a6435
-
SHA256
3cb39db6bb4ae8c45e2933e2f6894c431b8482ead7f0584146ff6869d4daedc6
-
SHA512
67b2d3d36ade22d8502a4e8198302f901ca28b3801fcb97150bea3592fabc3b0645398a8b10499b7879100ad8a8b0bca0f201a8dc6c62f5b94d3dbba1540c8a4
-
SSDEEP
768:W7BlpQpARFbh2UM/zX1vqX1vLFB5W5pYJIJDYJIJOO6O2lpHiJOP25LqrH5HiJOU:W7ZQpApjIWe+eoO6O2lpiMZiMjjW
Static task
static1
Behavioral task
behavioral1
Sample
dcf7ecdd68c63cf603ec6891d84fb73a_NEIKI.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
dcf7ecdd68c63cf603ec6891d84fb73a_NEIKI.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
dcf7ecdd68c63cf603ec6891d84fb73a_NEIKI
-
Size
107KB
-
MD5
dcf7ecdd68c63cf603ec6891d84fb73a
-
SHA1
204b817a68feb12d6b028919b6e4e2ab727a6435
-
SHA256
3cb39db6bb4ae8c45e2933e2f6894c431b8482ead7f0584146ff6869d4daedc6
-
SHA512
67b2d3d36ade22d8502a4e8198302f901ca28b3801fcb97150bea3592fabc3b0645398a8b10499b7879100ad8a8b0bca0f201a8dc6c62f5b94d3dbba1540c8a4
-
SSDEEP
768:W7BlpQpARFbh2UM/zX1vqX1vLFB5W5pYJIJDYJIJOO6O2lpHiJOP25LqrH5HiJOU:W7ZQpApjIWe+eoO6O2lpiMZiMjjW
Score9/10-
Renames multiple (3447) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-