Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

0dcd221f54...cs.exe

windows7-x64

9

0dcd221f54...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0dcd221f543a149e248a8dc1e69b41c0_NeikiAnalytics.exe

  • Size

    52KB

  • Sample

    240526-sryy3sbg88

  • MD5

    0dcd221f543a149e248a8dc1e69b41c0

  • SHA1

    6b39a03a76166543c46b2bf2db61f50b0726fc14

  • SHA256

    d08df1cddc480e244e7ddfea75e04762333a92403a8ccb55f7e06ba892aaf168

  • SHA512

    b4c55fc5b0ddb326aff4c279213105917e4865fe23b2b9e0a21ee2bc65bae787ed0fe73df25b9d314e12ff1f918c4332d2c2e8c1f79f9a5f70e5b8202067ea09

  • SSDEEP

    768:W7BlpNLpARFbhblkYlkrt8PWGoPWGqMs1MsR5nd5nVJpQJpN:W7ZNLpApCZrt8PWGoPWGANdNVJpQJpN

Score
9/10
ransomware

Malware Config

Targets

    • Target

      0dcd221f543a149e248a8dc1e69b41c0_NeikiAnalytics.exe

    • Size

      52KB

    • MD5

      0dcd221f543a149e248a8dc1e69b41c0

    • SHA1

      6b39a03a76166543c46b2bf2db61f50b0726fc14

    • SHA256

      d08df1cddc480e244e7ddfea75e04762333a92403a8ccb55f7e06ba892aaf168

    • SHA512

      b4c55fc5b0ddb326aff4c279213105917e4865fe23b2b9e0a21ee2bc65bae787ed0fe73df25b9d314e12ff1f918c4332d2c2e8c1f79f9a5f70e5b8202067ea09

    • SSDEEP

      768:W7BlpNLpARFbhblkYlkrt8PWGoPWGqMs1MsR5nd5nVJpQJpN:W7ZNLpApCZrt8PWGoPWGANdNVJpQJpN

    Score
    9/10
    ransomware

    • Renames multiple (3562) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks