Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
270671e2eee8f7414f365c32ac221d20_NeikiAnalytics.exe
-
Size
42KB
-
Sample
240529-btppracf8y
-
MD5
270671e2eee8f7414f365c32ac221d20
-
SHA1
4711936d41c6920b1535d033d6fc674f83e8971a
-
SHA256
56fad23a43f78a9006d644dce571c325f89e15af34c81505753f49310cf67e6d
-
SHA512
413b6d9d6ec4dc2b2658606fd8ff06cd0ddf0e5b4835438e177bdfab6ae28d69967d744e24ef291bde58403a7b04786e077f4765ce15bd0411b8dade5aa86a51
-
SSDEEP
768:W7BlpNLpARFbhblkYlkrt8PWGoPWGBJ0CJ0k:W7ZNLpApCZrt8PWGoPWGBJ0CJ0k
Static task
static1
Behavioral task
behavioral1
Sample
270671e2eee8f7414f365c32ac221d20_NeikiAnalytics.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
270671e2eee8f7414f365c32ac221d20_NeikiAnalytics.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
270671e2eee8f7414f365c32ac221d20_NeikiAnalytics.exe
-
Size
42KB
-
MD5
270671e2eee8f7414f365c32ac221d20
-
SHA1
4711936d41c6920b1535d033d6fc674f83e8971a
-
SHA256
56fad23a43f78a9006d644dce571c325f89e15af34c81505753f49310cf67e6d
-
SHA512
413b6d9d6ec4dc2b2658606fd8ff06cd0ddf0e5b4835438e177bdfab6ae28d69967d744e24ef291bde58403a7b04786e077f4765ce15bd0411b8dade5aa86a51
-
SSDEEP
768:W7BlpNLpARFbhblkYlkrt8PWGoPWGBJ0CJ0k:W7ZNLpApCZrt8PWGoPWGBJ0CJ0k
Score9/10-
Renames multiple (3499) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-