Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8fd7b082b93f996fae9ca4dc20ccb1d0_NeikiAnalytics

  • Size

    154KB

  • Sample

    240510-g8sb3sfh31

  • MD5

    8fd7b082b93f996fae9ca4dc20ccb1d0

  • SHA1

    a31973b230a397b1e4941bbb8e7b96eeb375695c

  • SHA256

    7bb7178ced26bf8928f3fe53802485021ec09a26bd76c61bf14380eaa73b78d8

  • SHA512

    6b05a97c2b2efdbed2ead7d0e80f42b4737dee9fee80c9669c11f99d2f57e8b7db7b2c8aac92090dbd5c7e2d05e602b0b734751b93ebdad3325aa4d974bb4d86

  • SSDEEP

    3072:6e7WpnhkElEa0NQn0NQye7WpnhkElEa0NQn0NQEXxX1:RqthNqthYhl

Score
9/10

Malware Config

Targets

    • Target

      8fd7b082b93f996fae9ca4dc20ccb1d0_NeikiAnalytics

    • Size

      154KB

    • MD5

      8fd7b082b93f996fae9ca4dc20ccb1d0

    • SHA1

      a31973b230a397b1e4941bbb8e7b96eeb375695c

    • SHA256

      7bb7178ced26bf8928f3fe53802485021ec09a26bd76c61bf14380eaa73b78d8

    • SHA512

      6b05a97c2b2efdbed2ead7d0e80f42b4737dee9fee80c9669c11f99d2f57e8b7db7b2c8aac92090dbd5c7e2d05e602b0b734751b93ebdad3325aa4d974bb4d86

    • SSDEEP

      3072:6e7WpnhkElEa0NQn0NQye7WpnhkElEa0NQn0NQEXxX1:RqthNqthYhl

    Score
    9/10
    • Renames multiple (3907) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks