Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0402f6277e343f8dacbc3cbbdd8a9ebc9e45c480c0f603bc0cf85d5d09e0bc5b_NeikiAnalytics.exe

  • Size

    71KB

  • Sample

    240619-y4apxazdle

  • MD5

    b68022e2cc124b62a9dc2f9af8cb8a10

  • SHA1

    e86ef9bc0252066399922125a91f284a724742d9

  • SHA256

    0402f6277e343f8dacbc3cbbdd8a9ebc9e45c480c0f603bc0cf85d5d09e0bc5b

  • SHA512

    9aaf1fbfe826d5d88b4fc5ba7c42468b26f49205a4aa9758be220967e56206da4a5078e1d343a709249a2c3181706f7eaec7f79e0872e642fda0b171fcb4bca6

  • SSDEEP

    768:W7BlpDpARFbhYQkQjjIXYvPXzWPXzK3733uF4V7en5c5HChCrmh1444X:W7ZDpApYbWjIoPyPoLzV7c6Sh1XE

Score
9/10

Malware Config

Targets

    • Target

      0402f6277e343f8dacbc3cbbdd8a9ebc9e45c480c0f603bc0cf85d5d09e0bc5b_NeikiAnalytics.exe

    • Size

      71KB

    • MD5

      b68022e2cc124b62a9dc2f9af8cb8a10

    • SHA1

      e86ef9bc0252066399922125a91f284a724742d9

    • SHA256

      0402f6277e343f8dacbc3cbbdd8a9ebc9e45c480c0f603bc0cf85d5d09e0bc5b

    • SHA512

      9aaf1fbfe826d5d88b4fc5ba7c42468b26f49205a4aa9758be220967e56206da4a5078e1d343a709249a2c3181706f7eaec7f79e0872e642fda0b171fcb4bca6

    • SSDEEP

      768:W7BlpDpARFbhYQkQjjIXYvPXzWPXzK3733uF4V7en5c5HChCrmh1444X:W7ZDpApYbWjIoPyPoLzV7c6Sh1XE

    Score
    9/10
    • Renames multiple (3519) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

MITRE ATT&CK Matrix

Tasks