Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
9a288e321ed889d6581c7a28f4f164d0_NeikiAnalytics
-
Size
68KB
-
Sample
240511-hw3sqace7y
-
MD5
9a288e321ed889d6581c7a28f4f164d0
-
SHA1
f6956022828b8e88daa74ce5833a0bd58725dbc9
-
SHA256
5b456c7c27e9d1efc91343cf6cadcd67bbca1db28f1e0f2255ebd511f7d515f9
-
SHA512
678f943fabd9a65b113397e72a8f4ddd8f9cd3637c1251dfdd3f1055d983826cf48c7cd6262c992dae2645fc126b206be141c938a1b808efda457bc732882100
-
SSDEEP
768:W7BlpDpARFbhYQkQjjI6OvSox/6Sox/hotyukfvw5R5l:W7ZDpApYbWjIlE77ulTL
Static task
static1
Behavioral task
behavioral1
Sample
9a288e321ed889d6581c7a28f4f164d0_NeikiAnalytics.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
9a288e321ed889d6581c7a28f4f164d0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
9a288e321ed889d6581c7a28f4f164d0_NeikiAnalytics
-
Size
68KB
-
MD5
9a288e321ed889d6581c7a28f4f164d0
-
SHA1
f6956022828b8e88daa74ce5833a0bd58725dbc9
-
SHA256
5b456c7c27e9d1efc91343cf6cadcd67bbca1db28f1e0f2255ebd511f7d515f9
-
SHA512
678f943fabd9a65b113397e72a8f4ddd8f9cd3637c1251dfdd3f1055d983826cf48c7cd6262c992dae2645fc126b206be141c938a1b808efda457bc732882100
-
SSDEEP
768:W7BlpDpARFbhYQkQjjI6OvSox/6Sox/hotyukfvw5R5l:W7ZDpApYbWjIlE77ulTL
Score9/10-
Renames multiple (3449) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-