Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0dcd221f543a149e248a8dc1e69b41c0_NeikiAnalytics.exe
-
Size
52KB
-
Sample
240526-sryy3sbg88
-
MD5
0dcd221f543a149e248a8dc1e69b41c0
-
SHA1
6b39a03a76166543c46b2bf2db61f50b0726fc14
-
SHA256
d08df1cddc480e244e7ddfea75e04762333a92403a8ccb55f7e06ba892aaf168
-
SHA512
b4c55fc5b0ddb326aff4c279213105917e4865fe23b2b9e0a21ee2bc65bae787ed0fe73df25b9d314e12ff1f918c4332d2c2e8c1f79f9a5f70e5b8202067ea09
-
SSDEEP
768:W7BlpNLpARFbhblkYlkrt8PWGoPWGqMs1MsR5nd5nVJpQJpN:W7ZNLpApCZrt8PWGoPWGANdNVJpQJpN
Static task
static1
Behavioral task
behavioral1
Sample
0dcd221f543a149e248a8dc1e69b41c0_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
0dcd221f543a149e248a8dc1e69b41c0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
0dcd221f543a149e248a8dc1e69b41c0_NeikiAnalytics.exe
-
Size
52KB
-
MD5
0dcd221f543a149e248a8dc1e69b41c0
-
SHA1
6b39a03a76166543c46b2bf2db61f50b0726fc14
-
SHA256
d08df1cddc480e244e7ddfea75e04762333a92403a8ccb55f7e06ba892aaf168
-
SHA512
b4c55fc5b0ddb326aff4c279213105917e4865fe23b2b9e0a21ee2bc65bae787ed0fe73df25b9d314e12ff1f918c4332d2c2e8c1f79f9a5f70e5b8202067ea09
-
SSDEEP
768:W7BlpNLpARFbhblkYlkrt8PWGoPWGqMs1MsR5nd5nVJpQJpN:W7ZNLpApCZrt8PWGoPWGANdNVJpQJpN
Score9/10-
Renames multiple (3562) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-