Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0b55cb2095a89d0f51b9a4acb5a446a0_NeikiAnalytics
-
Size
66KB
-
Sample
240515-wgsk4ace34
-
MD5
0b55cb2095a89d0f51b9a4acb5a446a0
-
SHA1
d9eeedba65d5dde2be54e31889564b44b2080a8d
-
SHA256
e5384fdddd0cf77f8f1e6872fee44c51981a112094d8616152394e5235347426
-
SHA512
70f8696790171617fab5937804784e1c8511ef7fef2b416a00b3b29f802a1585369f2a01132cb43a865181cf7009ba52ceb981fcb653537975495968d2077177
-
SSDEEP
768:W7BlpDpARFbhYQkQjjLaManvFNFO/Ms5Ms2Fnj28/8UMWMtb9IWW0DiDyrJfs6fs:W7ZDpApYbWjCDOgj28/8vhtbQ
Static task
static1
Behavioral task
behavioral1
Sample
0b55cb2095a89d0f51b9a4acb5a446a0_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
0b55cb2095a89d0f51b9a4acb5a446a0_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
0b55cb2095a89d0f51b9a4acb5a446a0_NeikiAnalytics
-
Size
66KB
-
MD5
0b55cb2095a89d0f51b9a4acb5a446a0
-
SHA1
d9eeedba65d5dde2be54e31889564b44b2080a8d
-
SHA256
e5384fdddd0cf77f8f1e6872fee44c51981a112094d8616152394e5235347426
-
SHA512
70f8696790171617fab5937804784e1c8511ef7fef2b416a00b3b29f802a1585369f2a01132cb43a865181cf7009ba52ceb981fcb653537975495968d2077177
-
SSDEEP
768:W7BlpDpARFbhYQkQjjLaManvFNFO/Ms5Ms2Fnj28/8UMWMtb9IWW0DiDyrJfs6fs:W7ZDpApYbWjCDOgj28/8vhtbQ
Score9/10-
Renames multiple (3657) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-