Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0335785036f28be18dd698be8c693df0_NeikiAnalytics.exe

  • Size

    101KB

  • Sample

    240603-z1zejahc71

  • MD5

    0335785036f28be18dd698be8c693df0

  • SHA1

    fa15d5a25e6c3577f59567dfc07da426a14b1ac0

  • SHA256

    779a41065ec1215dca996c717ec8d5a781d73c9b6949e194af54d6d10e66d062

  • SHA512

    4548b771030ee6599d17a3caaa99db5ff2a62b37253f85703290bbbf559098575970f74534278e107479fa490911c58df6d100e26fe6041ca23e87d3f7de180c

  • SSDEEP

    3072:6rWpcOPxPke+e3fFpsJOfFpsJbgEmPxP5:tFPxPke+eImPxP5

Score
9/10

Malware Config

Targets

    • Target

      0335785036f28be18dd698be8c693df0_NeikiAnalytics.exe

    • Size

      101KB

    • MD5

      0335785036f28be18dd698be8c693df0

    • SHA1

      fa15d5a25e6c3577f59567dfc07da426a14b1ac0

    • SHA256

      779a41065ec1215dca996c717ec8d5a781d73c9b6949e194af54d6d10e66d062

    • SHA512

      4548b771030ee6599d17a3caaa99db5ff2a62b37253f85703290bbbf559098575970f74534278e107479fa490911c58df6d100e26fe6041ca23e87d3f7de180c

    • SSDEEP

      3072:6rWpcOPxPke+e3fFpsJOfFpsJbgEmPxP5:tFPxPke+eImPxP5

    Score
    9/10
    • Renames multiple (679) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

MITRE ATT&CK Matrix

Tasks