Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
8e2ac21978c4863cdc87e9d2103adc20_NeikiAnalytics
-
Size
177KB
-
Sample
240511-gpvm4abh22
-
MD5
8e2ac21978c4863cdc87e9d2103adc20
-
SHA1
41964597ca82de027545936353bba8e16726ff0b
-
SHA256
2571c1281f746554fa3c387e7a4eecec49002a04c8c5548ba73c68d46161e2d4
-
SHA512
542ca4f3f8e1af534f962f37f5ac9e8a1614a34f87ecec5bf58266c444205a99d8e9524f2b286bfc957e2c626eab2d575e329b243a41ea61120ff100f936e1cb
-
SSDEEP
3072:+nyiQSo1EZGtKgZGtK/PgtU1wAIuZAIup:JiQSo1EZGtKgZGtK/CAIuZAIup
Malware Config
Targets
-
-
Target
8e2ac21978c4863cdc87e9d2103adc20_NeikiAnalytics
-
Size
177KB
-
MD5
8e2ac21978c4863cdc87e9d2103adc20
-
SHA1
41964597ca82de027545936353bba8e16726ff0b
-
SHA256
2571c1281f746554fa3c387e7a4eecec49002a04c8c5548ba73c68d46161e2d4
-
SHA512
542ca4f3f8e1af534f962f37f5ac9e8a1614a34f87ecec5bf58266c444205a99d8e9524f2b286bfc957e2c626eab2d575e329b243a41ea61120ff100f936e1cb
-
SSDEEP
3072:+nyiQSo1EZGtKgZGtK/PgtU1wAIuZAIup:JiQSo1EZGtKgZGtK/CAIuZAIup
Score9/10-
Renames multiple (3443) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-