Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

c16471ae72...cs.exe

windows7-x64

9

c16471ae72...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c16471ae72f7b4e94933aa41cb6ab380_NeikiAnalytics.exe

  • Size

    45KB

  • Sample

    240527-nbzs8aad57

  • MD5

    c16471ae72f7b4e94933aa41cb6ab380

  • SHA1

    2a86fa49133ff677609d77f897cabb99d254a3e7

  • SHA256

    1e92727ba99cafd0f658470e2b1a135311039c7e40f4c8e15aad9599d785f59b

  • SHA512

    d5cd0613287ef0d3394e734788a8d12441c8e37159bb207b77791a9dc74913595d18828e91d19b31ea77126c057c7b019a4a992b95a495e68892891b21e63dfa

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFQA:CTWn1++PJHJXA/OsIZfzc3/Q8Q8/8fTo

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      c16471ae72f7b4e94933aa41cb6ab380_NeikiAnalytics.exe

    • Size

      45KB

    • MD5

      c16471ae72f7b4e94933aa41cb6ab380

    • SHA1

      2a86fa49133ff677609d77f897cabb99d254a3e7

    • SHA256

      1e92727ba99cafd0f658470e2b1a135311039c7e40f4c8e15aad9599d785f59b

    • SHA512

      d5cd0613287ef0d3394e734788a8d12441c8e37159bb207b77791a9dc74913595d18828e91d19b31ea77126c057c7b019a4a992b95a495e68892891b21e63dfa

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFQA:CTWn1++PJHJXA/OsIZfzc3/Q8Q8/8fTo

    Score
    9/10
    ransomwareupx

    • Renames multiple (3761) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks