9db3293defce2f326d4a9757eb26e2c0f71b27a6aa2b8940fe77cf1806a848e9 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

30bab38ca2...cs.exe

windows7-x64

9

30bab38ca2...cs.exe

windows10-2004-x64

9

Sharing

General

Target

30bab38ca28f5ace1a9da25c33caba40_NeikiAnalytics
Size

72KB
Sample

240511-yfm1bseb8w
MD5

30bab38ca28f5ace1a9da25c33caba40
SHA1

1a58588b6e7076a098a6b6e120c04d1cc722bc2e
SHA256

9db3293defce2f326d4a9757eb26e2c0f71b27a6aa2b8940fe77cf1806a848e9
SHA512

09190e9f5c0c1f8bf343a6fd7cc26893602843a000bc7e1be87d2faf1dde792841a7740097b633ed2f8cfe79185f1aacf3bead179be26056d7073aa40be84c90
SSDEEP

768:W7BlpDpARFbhYQkQjjLaManvFNFO/Ms5Ms2FjJk9O7X7vX9O7X7vR:W7ZDpApYbWjCDOcJO

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

30bab38ca28f5ace1a9da25c33caba40_NeikiAnalytics.exe

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

30bab38ca28f5ace1a9da25c33caba40_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  30bab38ca28f5ace1a9da25c33caba40_NeikiAnalytics
- Size
  
  72KB
- MD5
  
  30bab38ca28f5ace1a9da25c33caba40
- SHA1
  
  1a58588b6e7076a098a6b6e120c04d1cc722bc2e
- SHA256
  
  9db3293defce2f326d4a9757eb26e2c0f71b27a6aa2b8940fe77cf1806a848e9
- SHA512
  
  09190e9f5c0c1f8bf343a6fd7cc26893602843a000bc7e1be87d2faf1dde792841a7740097b633ed2f8cfe79185f1aacf3bead179be26056d7073aa40be84c90
- SSDEEP
  
  768:W7BlpDpARFbhYQkQjjLaManvFNFO/Ms5Ms2FjJk9O7X7vX9O7X7vR:W7ZDpApYbWjCDOcJO
Score

9^/10

ransomware
- Renames multiple (3751) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy