Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
ca48530c422058c9b5fba2e07224f020_NeikiAnalytics
-
Size
176KB
-
Sample
240514-rpy1maag4z
-
MD5
ca48530c422058c9b5fba2e07224f020
-
SHA1
1fb48ceba7d1b1cc3e6bfde7a9e5c773ff26a6a0
-
SHA256
aab3f35915c63a4cf6897752927b40774dc4cd9f8ad269e46bf595d53b207f38
-
SHA512
08d96d29de2663203d08e4e8c9583a11455269e98b70c7135d14e2ec63b871c4b2553029861e85cd1d09d5bd5828a32ac2334da484e073c01159be647a2267da
-
SSDEEP
3072:+nyiQSo1EZGtKgZGtK/PgtU1wAIuZAIuXwFwtdfcy:JiQSo1EZGtKgZGtK/CAIuZAIuj
Behavioral task
behavioral1
Sample
ca48530c422058c9b5fba2e07224f020_NeikiAnalytics.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
ca48530c422058c9b5fba2e07224f020_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
ca48530c422058c9b5fba2e07224f020_NeikiAnalytics
-
Size
176KB
-
MD5
ca48530c422058c9b5fba2e07224f020
-
SHA1
1fb48ceba7d1b1cc3e6bfde7a9e5c773ff26a6a0
-
SHA256
aab3f35915c63a4cf6897752927b40774dc4cd9f8ad269e46bf595d53b207f38
-
SHA512
08d96d29de2663203d08e4e8c9583a11455269e98b70c7135d14e2ec63b871c4b2553029861e85cd1d09d5bd5828a32ac2334da484e073c01159be647a2267da
-
SSDEEP
3072:+nyiQSo1EZGtKgZGtK/PgtU1wAIuZAIuXwFwtdfcy:JiQSo1EZGtKgZGtK/CAIuZAIuj
Score9/10-
Renames multiple (3037) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-