Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

46a6f0ce2a...cs.exe

windows7-x64

9

46a6f0ce2a...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    46a6f0ce2a3f33c739e7ca5ad7091280_NeikiAnalytics.exe

  • Size

    43KB

  • Sample

    240605-hk6p8sgg81

  • MD5

    46a6f0ce2a3f33c739e7ca5ad7091280

  • SHA1

    5884e665667411c48ad309aa174d3cee0bf7469c

  • SHA256

    ecb2f0ea2da79f74bc2876f30a4c30e88023932f7c57983237304f8784bcb1de

  • SHA512

    442533e0da1c78a9b17db1c3e7fc7c9cbc4db70f02dee8cf2bc2b01e6a3b21ddfe4ebda01aa6fa9987aa516e4d789157504980ff72a00974afee69115786e1a9

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFQ3:CTWn1++PJHJXA/OsIZfzc3/Q8Q8/8SJM

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      46a6f0ce2a3f33c739e7ca5ad7091280_NeikiAnalytics.exe

    • Size

      43KB

    • MD5

      46a6f0ce2a3f33c739e7ca5ad7091280

    • SHA1

      5884e665667411c48ad309aa174d3cee0bf7469c

    • SHA256

      ecb2f0ea2da79f74bc2876f30a4c30e88023932f7c57983237304f8784bcb1de

    • SHA512

      442533e0da1c78a9b17db1c3e7fc7c9cbc4db70f02dee8cf2bc2b01e6a3b21ddfe4ebda01aa6fa9987aa516e4d789157504980ff72a00974afee69115786e1a9

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFQ3:CTWn1++PJHJXA/OsIZfzc3/Q8Q8/8SJM

    Score
    9/10
    ransomwareupx

    • Renames multiple (3442) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks