Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

5c97e12671...cs.exe

windows7-x64

9

5c97e12671...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5c97e1267129e664a5ecd987dabd1270_NeikiAnalytics.exe

  • Size

    75KB

  • Sample

    240613-ej24watdjd

  • MD5

    5c97e1267129e664a5ecd987dabd1270

  • SHA1

    e7344ce10b89cb983f5420c51d931c11c2b3d9e3

  • SHA256

    d7c5b569e3fd8e2a01d874595a5c03b06a6377aa966d36bf2128d6e66e8b0c17

  • SHA512

    6000fa89307812c0978d9ad8585b441c3d8997570441fd0d787312d7d10b84e3e75fdef96316f6fee734c0ca2b2b1f6207a06578eeef38ce6fb022535766313f

  • SSDEEP

    768:W7BlpDpARFbhYQkQjjI6OvSox/6Sox/hotyuftxtjYJIJDYJIJPwF9hHMZIa9hHE:W7ZDpApYbWjIlE77ufL2e+efZwZ2y

Score
9/10
ransomware

Malware Config

Targets

    • Target

      5c97e1267129e664a5ecd987dabd1270_NeikiAnalytics.exe

    • Size

      75KB

    • MD5

      5c97e1267129e664a5ecd987dabd1270

    • SHA1

      e7344ce10b89cb983f5420c51d931c11c2b3d9e3

    • SHA256

      d7c5b569e3fd8e2a01d874595a5c03b06a6377aa966d36bf2128d6e66e8b0c17

    • SHA512

      6000fa89307812c0978d9ad8585b441c3d8997570441fd0d787312d7d10b84e3e75fdef96316f6fee734c0ca2b2b1f6207a06578eeef38ce6fb022535766313f

    • SSDEEP

      768:W7BlpDpARFbhYQkQjjI6OvSox/6Sox/hotyuftxtjYJIJDYJIJPwF9hHMZIa9hHE:W7ZDpApYbWjIlE77ufL2e+efZwZ2y

    Score
    9/10
    ransomware

    • Renames multiple (3725) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks