4dc64bce0efcdc3d30d8919b02f93b6c54edadc3959f4667ea1f0311946e1b04 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

30a7e91e4e...cs.exe

windows7-x64

9

30a7e91e4e...cs.exe

windows10-2004-x64

9

Sharing

General

Target

30a7e91e4ebce59ba2806a9922dfcef0_NeikiAnalytics.exe
Size

57KB
Sample

240602-d9v8kshg31
MD5

30a7e91e4ebce59ba2806a9922dfcef0
SHA1

faf1f8e89cf2287278ef8944a010074e435881c0
SHA256

4dc64bce0efcdc3d30d8919b02f93b6c54edadc3959f4667ea1f0311946e1b04
SHA512

322e05166f5d89e5cdc7dfdba1f1dab3ade715aa444c6186081401b9b0178abe41de08b05732b0b85220840bff022a98cf81e60a70ded32f6d8f3320281b82f7
SSDEEP

768:W7BlpNLpARFbhblkYlkrt8PWGoPWGqMs1MsR5nd5n9c4cO:W7ZNLpApCZrt8PWGoPWGANdNb

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

30a7e91e4ebce59ba2806a9922dfcef0_NeikiAnalytics.exe

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

30a7e91e4ebce59ba2806a9922dfcef0_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  30a7e91e4ebce59ba2806a9922dfcef0_NeikiAnalytics.exe
- Size
  
  57KB
- MD5
  
  30a7e91e4ebce59ba2806a9922dfcef0
- SHA1
  
  faf1f8e89cf2287278ef8944a010074e435881c0
- SHA256
  
  4dc64bce0efcdc3d30d8919b02f93b6c54edadc3959f4667ea1f0311946e1b04
- SHA512
  
  322e05166f5d89e5cdc7dfdba1f1dab3ade715aa444c6186081401b9b0178abe41de08b05732b0b85220840bff022a98cf81e60a70ded32f6d8f3320281b82f7
- SSDEEP
  
  768:W7BlpNLpARFbhblkYlkrt8PWGoPWGqMs1MsR5nd5n9c4cO:W7ZNLpApCZrt8PWGoPWGANdNb
Score

9^/10

ransomware
- Renames multiple (3664) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy