5b354a40ae3a2137f56b97eb774423b4a8e2bf2695efcf647a55416951158a01 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

ea6327b2f0...cs.exe

windows7-x64

9

ea6327b2f0...cs.exe

windows10-2004-x64

9

Sharing

General

Target

ea6327b2f0ad17e9745b737c528b0660_NeikiAnalytics.exe
Size

128KB
Sample

240517-nf1w3sfc3v
MD5

ea6327b2f0ad17e9745b737c528b0660
SHA1

663c1ddafa9eb3889314d74441f99c3cf2f6da22
SHA256

5b354a40ae3a2137f56b97eb774423b4a8e2bf2695efcf647a55416951158a01
SHA512

e70eb91531a10b566977fa98754ac63cfbae31759ab816bcf901607fc49fe769c2fd0862113b8ff9c7f3bfb88b70401fcbb652f472a49deee8e02f9a7c7a38db
SSDEEP

3072:6e7WpHIyRF9ESWu0SWuDmhSauvEKxVTLJtxoVz8FUDrYYaCusjdEKxVTLJtxoVzu:RqlIyFESWu0SWuGSwxR

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ea6327b2f0ad17e9745b737c528b0660_NeikiAnalytics.exe

Resource

win7-20240220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

ea6327b2f0ad17e9745b737c528b0660_NeikiAnalytics.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  ea6327b2f0ad17e9745b737c528b0660_NeikiAnalytics.exe
- Size
  
  128KB
- MD5
  
  ea6327b2f0ad17e9745b737c528b0660
- SHA1
  
  663c1ddafa9eb3889314d74441f99c3cf2f6da22
- SHA256
  
  5b354a40ae3a2137f56b97eb774423b4a8e2bf2695efcf647a55416951158a01
- SHA512
  
  e70eb91531a10b566977fa98754ac63cfbae31759ab816bcf901607fc49fe769c2fd0862113b8ff9c7f3bfb88b70401fcbb652f472a49deee8e02f9a7c7a38db
- SSDEEP
  
  3072:6e7WpHIyRF9ESWu0SWuDmhSauvEKxVTLJtxoVz8FUDrYYaCusjdEKxVTLJtxoVzu:RqlIyFESWu0SWuGSwxR
Score

9^/10

ransomware
- Renames multiple (3422) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy