Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

5055881261...cs.exe

windows7-x64

9

5055881261...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    505588126151fb79bcd9aff9140eb040_NeikiAnalytics.exe

  • Size

    73KB

  • Sample

    240529-l3ew1sbf35

  • MD5

    505588126151fb79bcd9aff9140eb040

  • SHA1

    7d3b089716c8fe392fe2f60c485b9b2b49a3e368

  • SHA256

    356af02bd2956d7d2dbd84b4cdc70f1435030bb445a9b9f4824f2627aca3b770

  • SHA512

    c83a8d9ca7d2fb2c92e718b2a973f399bebe80a78d8a6b370141b31a6000d4f724f98324075f422b3c2d2e05fdd3d5e255b1768b9f2bf6b3c2e21872ab1a8bcb

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8yiv:fnyiQSo6

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      505588126151fb79bcd9aff9140eb040_NeikiAnalytics.exe

    • Size

      73KB

    • MD5

      505588126151fb79bcd9aff9140eb040

    • SHA1

      7d3b089716c8fe392fe2f60c485b9b2b49a3e368

    • SHA256

      356af02bd2956d7d2dbd84b4cdc70f1435030bb445a9b9f4824f2627aca3b770

    • SHA512

      c83a8d9ca7d2fb2c92e718b2a973f399bebe80a78d8a6b370141b31a6000d4f724f98324075f422b3c2d2e05fdd3d5e255b1768b9f2bf6b3c2e21872ab1a8bcb

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8yiv:fnyiQSo6

    Score
    9/10
    ransomwareupx

    • Renames multiple (3520) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks