Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
816971a5bf861fe572641866a58835f0_NeikiAnalytics
-
Size
108KB
-
Sample
240516-c2d4nage9v
-
MD5
816971a5bf861fe572641866a58835f0
-
SHA1
2a7679214724bdbe3c61969d32687ec511831af6
-
SHA256
52c17c396a2041b3b1023879ad3510a3dc975fbabaea164f91e5c423b597bb29
-
SHA512
818b61800b9e468e4971d194271e882223fa2c8333dc47a2bfc0e2741f58b9778b058694a0f00ff91b3ae51622b68a9627ce6f3dd057f5467aeb3e336ad896ca
-
SSDEEP
1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf0xU:hfAIuZAIuYSMjoqtMHfhfN
Behavioral task
behavioral1
Sample
816971a5bf861fe572641866a58835f0_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
816971a5bf861fe572641866a58835f0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
816971a5bf861fe572641866a58835f0_NeikiAnalytics
-
Size
108KB
-
MD5
816971a5bf861fe572641866a58835f0
-
SHA1
2a7679214724bdbe3c61969d32687ec511831af6
-
SHA256
52c17c396a2041b3b1023879ad3510a3dc975fbabaea164f91e5c423b597bb29
-
SHA512
818b61800b9e468e4971d194271e882223fa2c8333dc47a2bfc0e2741f58b9778b058694a0f00ff91b3ae51622b68a9627ce6f3dd057f5467aeb3e336ad896ca
-
SSDEEP
1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf0xU:hfAIuZAIuYSMjoqtMHfhfN
Score9/10-
Renames multiple (779) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-