Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    679c5fc9c3fa070269d8158e49fede90_NeikiAnalytics.exe

  • Size

    1.3MB

  • Sample

    240607-syqw2sae3y

  • MD5

    679c5fc9c3fa070269d8158e49fede90

  • SHA1

    2363c589009d601cb42f53265b389b9b89459785

  • SHA256

    1542b5ba305e99f049ede500ca8304bcb048f30b71f6114d11e76ab5183a3139

  • SHA512

    df1471cafe9c77af7e06cb19382f0c79fe07e80ede6310f47143ccf6e05995aa11ba8961f582fec9021158f2b858af6ad5293b6072c923965cfeb804c75ccdfb

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxS:fnyiQSov

Score
9/10

Malware Config

Targets

    • Target

      679c5fc9c3fa070269d8158e49fede90_NeikiAnalytics.exe

    • Size

      1.3MB

    • MD5

      679c5fc9c3fa070269d8158e49fede90

    • SHA1

      2363c589009d601cb42f53265b389b9b89459785

    • SHA256

      1542b5ba305e99f049ede500ca8304bcb048f30b71f6114d11e76ab5183a3139

    • SHA512

      df1471cafe9c77af7e06cb19382f0c79fe07e80ede6310f47143ccf6e05995aa11ba8961f582fec9021158f2b858af6ad5293b6072c923965cfeb804c75ccdfb

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxS:fnyiQSov

    Score
    9/10
    • Renames multiple (198) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks