Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
47a1377521a7d703d06bf5cf1d6dcbe0_NeikiAnalytics.exe
-
Size
101KB
-
Sample
240602-g4hl3seb56
-
MD5
47a1377521a7d703d06bf5cf1d6dcbe0
-
SHA1
e8b5d7a01c93622b8af9d94beb28da9d3fbb7292
-
SHA256
959f348f7beed58ee1bb98dd56cc94b2d002ddab1d9414512a5ea243ba64b434
-
SHA512
45f8f46dd7534da56df7460b86b32738899efc9d1bf9b9833b916fdd16ca1cf0115467380c105581f7a0b82cbc66c59389f3e24743e13a2be80a9b46784ceb5b
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsJOKTWn1++PJHJXA/OsIZfzc3/Q8asUsJOjA:KQSohsUsjQSohsUsa0NQn0NQw
Behavioral task
behavioral1
Sample
47a1377521a7d703d06bf5cf1d6dcbe0_NeikiAnalytics.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
47a1377521a7d703d06bf5cf1d6dcbe0_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
47a1377521a7d703d06bf5cf1d6dcbe0_NeikiAnalytics.exe
-
Size
101KB
-
MD5
47a1377521a7d703d06bf5cf1d6dcbe0
-
SHA1
e8b5d7a01c93622b8af9d94beb28da9d3fbb7292
-
SHA256
959f348f7beed58ee1bb98dd56cc94b2d002ddab1d9414512a5ea243ba64b434
-
SHA512
45f8f46dd7534da56df7460b86b32738899efc9d1bf9b9833b916fdd16ca1cf0115467380c105581f7a0b82cbc66c59389f3e24743e13a2be80a9b46784ceb5b
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsJOKTWn1++PJHJXA/OsIZfzc3/Q8asUsJOjA:KQSohsUsjQSohsUsa0NQn0NQw
Score9/10-
Renames multiple (4694) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-