Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

e20d616b32...cs.exe

windows7-x64

9

e20d616b32...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e20d616b325d43abf6e538734cfd5b10_NeikiAnalytics

  • Size

    76KB

  • Sample

    240516-rvavzsha9t

  • MD5

    e20d616b325d43abf6e538734cfd5b10

  • SHA1

    ef0ac19d1bbff5f9f80db0ee57662c19f1635526

  • SHA256

    cd92dfde4955a24f35e8359f972e2401a0493988b4fe44fc35dbcc82800f0596

  • SHA512

    9942e4d0272599e9d58975bea9f83d3826c6a09e6c9b7f539c5cdee024855697e4a46e2719cb2e829addc2493c32415afcf1b6b8a4e7ab1cfacf8d33ca43de59

  • SSDEEP

    1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eJG/x/fcicG:6e7WpMaxeb0CYJ97lEYNR73e+eKZf

Score
9/10
ransomware

Malware Config

Targets

    • Target

      e20d616b325d43abf6e538734cfd5b10_NeikiAnalytics

    • Size

      76KB

    • MD5

      e20d616b325d43abf6e538734cfd5b10

    • SHA1

      ef0ac19d1bbff5f9f80db0ee57662c19f1635526

    • SHA256

      cd92dfde4955a24f35e8359f972e2401a0493988b4fe44fc35dbcc82800f0596

    • SHA512

      9942e4d0272599e9d58975bea9f83d3826c6a09e6c9b7f539c5cdee024855697e4a46e2719cb2e829addc2493c32415afcf1b6b8a4e7ab1cfacf8d33ca43de59

    • SSDEEP

      1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eJG/x/fcicG:6e7WpMaxeb0CYJ97lEYNR73e+eKZf

    Score
    9/10
    ransomware

    • Renames multiple (3449) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks