Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

0402f6277e...cs.exe

windows7-x64

9

0402f6277e...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0402f6277e343f8dacbc3cbbdd8a9ebc9e45c480c0f603bc0cf85d5d09e0bc5b_NeikiAnalytics.exe

  • Size

    71KB

  • Sample

    240619-y4apxazdle

  • MD5

    b68022e2cc124b62a9dc2f9af8cb8a10

  • SHA1

    e86ef9bc0252066399922125a91f284a724742d9

  • SHA256

    0402f6277e343f8dacbc3cbbdd8a9ebc9e45c480c0f603bc0cf85d5d09e0bc5b

  • SHA512

    9aaf1fbfe826d5d88b4fc5ba7c42468b26f49205a4aa9758be220967e56206da4a5078e1d343a709249a2c3181706f7eaec7f79e0872e642fda0b171fcb4bca6

  • SSDEEP

    768:W7BlpDpARFbhYQkQjjIXYvPXzWPXzK3733uF4V7en5c5HChCrmh1444X:W7ZDpApYbWjIoPyPoLzV7c6Sh1XE

Score
9/10
ransomware

Malware Config

Targets

    • Target

      0402f6277e343f8dacbc3cbbdd8a9ebc9e45c480c0f603bc0cf85d5d09e0bc5b_NeikiAnalytics.exe

    • Size

      71KB

    • MD5

      b68022e2cc124b62a9dc2f9af8cb8a10

    • SHA1

      e86ef9bc0252066399922125a91f284a724742d9

    • SHA256

      0402f6277e343f8dacbc3cbbdd8a9ebc9e45c480c0f603bc0cf85d5d09e0bc5b

    • SHA512

      9aaf1fbfe826d5d88b4fc5ba7c42468b26f49205a4aa9758be220967e56206da4a5078e1d343a709249a2c3181706f7eaec7f79e0872e642fda0b171fcb4bca6

    • SSDEEP

      768:W7BlpDpARFbhYQkQjjIXYvPXzWPXzK3733uF4V7en5c5HChCrmh1444X:W7ZDpApYbWjIoPyPoLzV7c6Sh1XE

    Score
    9/10
    ransomware

    • Renames multiple (3519) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks