Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

277d0e9ffd...cs.exe

windows7-x64

9

277d0e9ffd...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    277d0e9ffd63e7ae9d465974afc9cb20_NeikiAnalytics.exe

  • Size

    82KB

  • Sample

    240527-3rekjsff22

  • MD5

    277d0e9ffd63e7ae9d465974afc9cb20

  • SHA1

    039d1a92a69b289938479255de49783f8c9b5501

  • SHA256

    68d34f7e9b17c5fb2777f67a97bcdf52c42ef538a15b6501979699efe232b64b

  • SHA512

    ad01500e7db61f18c89cf8f1376dda3850a0d1088d59814fd09c1bfc3cc6096a65379391e9e7dd518eb4d907c53515201e5641fc7682af870c21cefe7297e870

  • SSDEEP

    768:W7BlpNLpARFbhblkYlkuvIYF17BlpNLpARFbhblkYlkuvIYFlopor:W7ZNLpApCZuvIYz7ZNLpApCZuvIYngu

Score
9/10
ransomware

Malware Config

Targets

    • Target

      277d0e9ffd63e7ae9d465974afc9cb20_NeikiAnalytics.exe

    • Size

      82KB

    • MD5

      277d0e9ffd63e7ae9d465974afc9cb20

    • SHA1

      039d1a92a69b289938479255de49783f8c9b5501

    • SHA256

      68d34f7e9b17c5fb2777f67a97bcdf52c42ef538a15b6501979699efe232b64b

    • SHA512

      ad01500e7db61f18c89cf8f1376dda3850a0d1088d59814fd09c1bfc3cc6096a65379391e9e7dd518eb4d907c53515201e5641fc7682af870c21cefe7297e870

    • SSDEEP

      768:W7BlpNLpARFbhblkYlkuvIYF17BlpNLpARFbhblkYlkuvIYFlopor:W7ZNLpApCZuvIYz7ZNLpApCZuvIYngu

    Score
    9/10
    ransomware

    • Renames multiple (4732) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks