Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2dbacef0e38d62ee449c439c518252c0_NeikiAnalytics
-
Size
96KB
-
Sample
240515-zabwjsah27
-
MD5
2dbacef0e38d62ee449c439c518252c0
-
SHA1
8b6e852e1737d00cc7b6a08814c75adcdeab63f1
-
SHA256
d3e8d0aa2e73edd3e3999bc83d7f262344ed44575fa211c062406100e6ee465d
-
SHA512
c5d0b9dfdb3911b6d96a5ad3bcb98432b5f5255a817b7f996c6d8172edb5e714910a6f65be77ceb04095a4ce103142cf733c50f25f97013243ae1d8527e96075
-
SSDEEP
3072:6rWpcOPxPke+e3fFpsJOfFpsJbgEDJYoAJYo7:tFPxPke+eIDJYoAJYo7
Static task
static1
Behavioral task
behavioral1
Sample
2dbacef0e38d62ee449c439c518252c0_NeikiAnalytics.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2dbacef0e38d62ee449c439c518252c0_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2dbacef0e38d62ee449c439c518252c0_NeikiAnalytics
-
Size
96KB
-
MD5
2dbacef0e38d62ee449c439c518252c0
-
SHA1
8b6e852e1737d00cc7b6a08814c75adcdeab63f1
-
SHA256
d3e8d0aa2e73edd3e3999bc83d7f262344ed44575fa211c062406100e6ee465d
-
SHA512
c5d0b9dfdb3911b6d96a5ad3bcb98432b5f5255a817b7f996c6d8172edb5e714910a6f65be77ceb04095a4ce103142cf733c50f25f97013243ae1d8527e96075
-
SSDEEP
3072:6rWpcOPxPke+e3fFpsJOfFpsJbgEDJYoAJYo7:tFPxPke+eIDJYoAJYo7
Score9/10-
Renames multiple (3450) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-