Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    10039811490983eba9514f58b5c4b5b0_NeikiAnalytics.exe

  • Size

    77KB

  • Sample

    240609-fmryraea2t

  • MD5

    10039811490983eba9514f58b5c4b5b0

  • SHA1

    8045d9030bb06f435b2a29e02efd6faa18e92f25

  • SHA256

    d0246b58ebf626f4c6ddec31f2df476954c75a9b79d210b660b309f1573320cb

  • SHA512

    8c96c736634a824e325da9f8e5f9b56ce237757f8380117528fe9591e4443336406a88dc3a061e08ed1164aa8284119f89e65858011be60f931c8676cbf3c01a

  • SSDEEP

    1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8xJJMJJ7:+nyiQSo1

Score
9/10

Malware Config

Targets

    • Target

      10039811490983eba9514f58b5c4b5b0_NeikiAnalytics.exe

    • Size

      77KB

    • MD5

      10039811490983eba9514f58b5c4b5b0

    • SHA1

      8045d9030bb06f435b2a29e02efd6faa18e92f25

    • SHA256

      d0246b58ebf626f4c6ddec31f2df476954c75a9b79d210b660b309f1573320cb

    • SHA512

      8c96c736634a824e325da9f8e5f9b56ce237757f8380117528fe9591e4443336406a88dc3a061e08ed1164aa8284119f89e65858011be60f931c8676cbf3c01a

    • SSDEEP

      1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8xJJMJJ7:+nyiQSo1

    Score
    9/10
    • Renames multiple (3447) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks