Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8e2ac21978c4863cdc87e9d2103adc20_NeikiAnalytics

  • Size

    177KB

  • Sample

    240511-gpvm4abh22

  • MD5

    8e2ac21978c4863cdc87e9d2103adc20

  • SHA1

    41964597ca82de027545936353bba8e16726ff0b

  • SHA256

    2571c1281f746554fa3c387e7a4eecec49002a04c8c5548ba73c68d46161e2d4

  • SHA512

    542ca4f3f8e1af534f962f37f5ac9e8a1614a34f87ecec5bf58266c444205a99d8e9524f2b286bfc957e2c626eab2d575e329b243a41ea61120ff100f936e1cb

  • SSDEEP

    3072:+nyiQSo1EZGtKgZGtK/PgtU1wAIuZAIup:JiQSo1EZGtKgZGtK/CAIuZAIup

Score
9/10

Malware Config

Targets

    • Target

      8e2ac21978c4863cdc87e9d2103adc20_NeikiAnalytics

    • Size

      177KB

    • MD5

      8e2ac21978c4863cdc87e9d2103adc20

    • SHA1

      41964597ca82de027545936353bba8e16726ff0b

    • SHA256

      2571c1281f746554fa3c387e7a4eecec49002a04c8c5548ba73c68d46161e2d4

    • SHA512

      542ca4f3f8e1af534f962f37f5ac9e8a1614a34f87ecec5bf58266c444205a99d8e9524f2b286bfc957e2c626eab2d575e329b243a41ea61120ff100f936e1cb

    • SSDEEP

      3072:+nyiQSo1EZGtKgZGtK/PgtU1wAIuZAIup:JiQSo1EZGtKgZGtK/CAIuZAIup

    Score
    9/10
    • Renames multiple (3443) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks