56fad23a43f78a9006d644dce571c325f89e15af34c81505753f49310cf67e6d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

270671e2ee...cs.exe

windows7-x64

9

270671e2ee...cs.exe

windows10-2004-x64

9

Sharing

General

Target

270671e2eee8f7414f365c32ac221d20_NeikiAnalytics.exe
Size

42KB
Sample

240529-btppracf8y
MD5

270671e2eee8f7414f365c32ac221d20
SHA1

4711936d41c6920b1535d033d6fc674f83e8971a
SHA256

56fad23a43f78a9006d644dce571c325f89e15af34c81505753f49310cf67e6d
SHA512

413b6d9d6ec4dc2b2658606fd8ff06cd0ddf0e5b4835438e177bdfab6ae28d69967d744e24ef291bde58403a7b04786e077f4765ce15bd0411b8dade5aa86a51
SSDEEP

768:W7BlpNLpARFbhblkYlkrt8PWGoPWGBJ0CJ0k:W7ZNLpApCZrt8PWGoPWGBJ0CJ0k

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

270671e2eee8f7414f365c32ac221d20_NeikiAnalytics.exe

Resource

win7-20240220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

270671e2eee8f7414f365c32ac221d20_NeikiAnalytics.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  270671e2eee8f7414f365c32ac221d20_NeikiAnalytics.exe
- Size
  
  42KB
- MD5
  
  270671e2eee8f7414f365c32ac221d20
- SHA1
  
  4711936d41c6920b1535d033d6fc674f83e8971a
- SHA256
  
  56fad23a43f78a9006d644dce571c325f89e15af34c81505753f49310cf67e6d
- SHA512
  
  413b6d9d6ec4dc2b2658606fd8ff06cd0ddf0e5b4835438e177bdfab6ae28d69967d744e24ef291bde58403a7b04786e077f4765ce15bd0411b8dade5aa86a51
- SSDEEP
  
  768:W7BlpNLpARFbhblkYlkrt8PWGoPWGBJ0CJ0k:W7ZNLpApCZrt8PWGoPWGBJ0CJ0k
Score

9^/10

ransomware
- Renames multiple (3499) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy