da9a50cc57e3038dcb1c3dbc7af301ce8aabbd5552e35ab0da749b79a782ad9a | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

99fa8022ab...cs.exe

windows7-x64

9

99fa8022ab...cs.exe

windows10-2004-x64

9

Sharing

General

Target

99fa8022abb0ac366fdcd1dc7c2bf890_NeikiAnalytics.exe
Size

77KB
Sample

240614-ckcjha1fnc
MD5

99fa8022abb0ac366fdcd1dc7c2bf890
SHA1

4788d3c662628a8f57b8fd76bc592a9d0e32e2d3
SHA256

da9a50cc57e3038dcb1c3dbc7af301ce8aabbd5552e35ab0da749b79a782ad9a
SHA512

bacda2fd9ad620635eeeeffd59d575fe4e64032bcba7e8fea01751757cccece51edab4e617f8de981afaafc99293c895dc1602c725e24f4aece4f065e761bdc2
SSDEEP

1536:W7ZhA7pApH1d9oVLQthbqbY9oVLQthbq51Rn6b+W+V76uS3:6e7WpP9oVLQthbYY9oVLQthbUvM

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

99fa8022abb0ac366fdcd1dc7c2bf890_NeikiAnalytics.exe

Resource

win7-20240611-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

99fa8022abb0ac366fdcd1dc7c2bf890_NeikiAnalytics.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  99fa8022abb0ac366fdcd1dc7c2bf890_NeikiAnalytics.exe
- Size
  
  77KB
- MD5
  
  99fa8022abb0ac366fdcd1dc7c2bf890
- SHA1
  
  4788d3c662628a8f57b8fd76bc592a9d0e32e2d3
- SHA256
  
  da9a50cc57e3038dcb1c3dbc7af301ce8aabbd5552e35ab0da749b79a782ad9a
- SHA512
  
  bacda2fd9ad620635eeeeffd59d575fe4e64032bcba7e8fea01751757cccece51edab4e617f8de981afaafc99293c895dc1602c725e24f4aece4f065e761bdc2
- SSDEEP
  
  1536:W7ZhA7pApH1d9oVLQthbqbY9oVLQthbq51Rn6b+W+V76uS3:6e7WpP9oVLQthbYY9oVLQthbUvM
Score

9^/10

ransomware
- Renames multiple (3510) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy