3cb39db6bb4ae8c45e2933e2f6894c431b8482ead7f0584146ff6869d4daedc6 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

dcf7ecdd68...KI.exe

windows7-x64

9

dcf7ecdd68...KI.exe

windows10-2004-x64

9

Sharing

General

Target

dcf7ecdd68c63cf603ec6891d84fb73a_NEIKI
Size

107KB
Sample

240509-pvx96saa4z
MD5

dcf7ecdd68c63cf603ec6891d84fb73a
SHA1

204b817a68feb12d6b028919b6e4e2ab727a6435
SHA256

3cb39db6bb4ae8c45e2933e2f6894c431b8482ead7f0584146ff6869d4daedc6
SHA512

67b2d3d36ade22d8502a4e8198302f901ca28b3801fcb97150bea3592fabc3b0645398a8b10499b7879100ad8a8b0bca0f201a8dc6c62f5b94d3dbba1540c8a4
SSDEEP

768:W7BlpQpARFbh2UM/zX1vqX1vLFB5W5pYJIJDYJIJOO6O2lpHiJOP25LqrH5HiJOU:W7ZQpApjIWe+eoO6O2lpiMZiMjjW

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dcf7ecdd68c63cf603ec6891d84fb73a_NEIKI.exe

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

dcf7ecdd68c63cf603ec6891d84fb73a_NEIKI.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  dcf7ecdd68c63cf603ec6891d84fb73a_NEIKI
- Size
  
  107KB
- MD5
  
  dcf7ecdd68c63cf603ec6891d84fb73a
- SHA1
  
  204b817a68feb12d6b028919b6e4e2ab727a6435
- SHA256
  
  3cb39db6bb4ae8c45e2933e2f6894c431b8482ead7f0584146ff6869d4daedc6
- SHA512
  
  67b2d3d36ade22d8502a4e8198302f901ca28b3801fcb97150bea3592fabc3b0645398a8b10499b7879100ad8a8b0bca0f201a8dc6c62f5b94d3dbba1540c8a4
- SSDEEP
  
  768:W7BlpQpARFbh2UM/zX1vqX1vLFB5W5pYJIJDYJIJOO6O2lpHiJOP25LqrH5HiJOU:W7ZQpApjIWe+eoO6O2lpiMZiMjjW
Score

9^/10

ransomware
- Renames multiple (3447) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy