Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

06244f224d...cs.exe

windows7-x64

9

06244f224d...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    06244f224d7d380167736f3d52a65d40_NeikiAnalytics

  • Size

    147KB

  • Sample

    240510-r7x62sbd51

  • MD5

    06244f224d7d380167736f3d52a65d40

  • SHA1

    ab36b9226fe7855552b31ab929549af949be5f59

  • SHA256

    1b133bdbd1d39c9bc42e3eb1432a0ddd2a163c1e0c250c86fe9210d3e12cb142

  • SHA512

    1ca06b12058045260bcf4b275abc419e951c2bb5a6b873cb16371eb65315b59fa545528e692230150c76e877ccd1d3d1cc7deebdadf75481303d26d55e1f2ffc

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q1pkMJ+ZGtK1+ZGtKQNMdTajOtGtU1wAIuZAIuJp:KQSo1EZGtKgZGtK/PgtU1wAIuZAIu/

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      06244f224d7d380167736f3d52a65d40_NeikiAnalytics

    • Size

      147KB

    • MD5

      06244f224d7d380167736f3d52a65d40

    • SHA1

      ab36b9226fe7855552b31ab929549af949be5f59

    • SHA256

      1b133bdbd1d39c9bc42e3eb1432a0ddd2a163c1e0c250c86fe9210d3e12cb142

    • SHA512

      1ca06b12058045260bcf4b275abc419e951c2bb5a6b873cb16371eb65315b59fa545528e692230150c76e877ccd1d3d1cc7deebdadf75481303d26d55e1f2ffc

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q1pkMJ+ZGtK1+ZGtKQNMdTajOtGtU1wAIuZAIuJp:KQSo1EZGtKgZGtK/PgtU1wAIuZAIu/

    Score
    9/10
    ransomwareupx

    • Renames multiple (3438) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks