Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
61caafe81ba97b631168c28cfc554640_NeikiAnalytics
-
Size
94KB
-
Sample
240512-dn1aeagg26
-
MD5
61caafe81ba97b631168c28cfc554640
-
SHA1
56357636a142143211af066737fed925194bfad4
-
SHA256
6df31a2aa901fbf7c9f585cae48f7f8687b997b81bae6940151d48071cc96bb9
-
SHA512
8007c29fa1b56b57edadb61e0ef227d1b47544878c8c600598874900e7f6c2b28268c4accbd44d2c6afb4715f12e93e20a3e6f828b90966d527aed3f3b43406c
-
SSDEEP
1536:W7ZrpApojOPG0PGQJwFJwkpe+eTDPfFpsJOfFpsJCAdCjHKPN5Bpyo:6rWpcOPxPke+e3fFpsJOfFpsJbgEXyo
Static task
static1
Behavioral task
behavioral1
Sample
61caafe81ba97b631168c28cfc554640_NeikiAnalytics.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
61caafe81ba97b631168c28cfc554640_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
61caafe81ba97b631168c28cfc554640_NeikiAnalytics
-
Size
94KB
-
MD5
61caafe81ba97b631168c28cfc554640
-
SHA1
56357636a142143211af066737fed925194bfad4
-
SHA256
6df31a2aa901fbf7c9f585cae48f7f8687b997b81bae6940151d48071cc96bb9
-
SHA512
8007c29fa1b56b57edadb61e0ef227d1b47544878c8c600598874900e7f6c2b28268c4accbd44d2c6afb4715f12e93e20a3e6f828b90966d527aed3f3b43406c
-
SSDEEP
1536:W7ZrpApojOPG0PGQJwFJwkpe+eTDPfFpsJOfFpsJCAdCjHKPN5Bpyo:6rWpcOPxPke+e3fFpsJOfFpsJbgEXyo
Score9/10-
Renames multiple (3442) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-