f4a7b1713f51e111dad9cd97552850a861ae045c56dd46534f2e6732efee83ef | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

8701deca40...cs.exe

windows7-x64

9

8701deca40...cs.exe

windows10-2004-x64

9

Sharing

General

Target

8701deca40122e25505dfa91dad14640_NeikiAnalytics
Size

380KB
Sample

240515-fxh4laba76
MD5

8701deca40122e25505dfa91dad14640
SHA1

c14f935800e34d0be90f969921ab3c9cf31f3a49
SHA256

f4a7b1713f51e111dad9cd97552850a861ae045c56dd46534f2e6732efee83ef
SHA512

19af96469e8b0cb1ad734925f81cba1deb7b481ccd10b56b4d69eee8ab33c2d8709815db2889cf09309da4aa8868de50a571abc5689cc114d897c2862733f293
SSDEEP

6144:tFPxPke+eIr9RUxfKIuqBcKxNWdp+bkrdHs1lpaSL4vtFVHPyvewDpgsKhK:3PxPir9RyiIuGcKbpaSL4vtFVHPyvewD

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8701deca40122e25505dfa91dad14640_NeikiAnalytics.exe

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

8701deca40122e25505dfa91dad14640_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  8701deca40122e25505dfa91dad14640_NeikiAnalytics
- Size
  
  380KB
- MD5
  
  8701deca40122e25505dfa91dad14640
- SHA1
  
  c14f935800e34d0be90f969921ab3c9cf31f3a49
- SHA256
  
  f4a7b1713f51e111dad9cd97552850a861ae045c56dd46534f2e6732efee83ef
- SHA512
  
  19af96469e8b0cb1ad734925f81cba1deb7b481ccd10b56b4d69eee8ab33c2d8709815db2889cf09309da4aa8868de50a571abc5689cc114d897c2862733f293
- SSDEEP
  
  6144:tFPxPke+eIr9RUxfKIuqBcKxNWdp+bkrdHs1lpaSL4vtFVHPyvewDpgsKhK:3PxPir9RyiIuGcKbpaSL4vtFVHPyvewD
Score

9^/10

ransomware
- Renames multiple (2740) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy