Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5ab9d0c60f4a8981c602b4dbb199a8f68a743bbbde207afd18d4064262a32ab9_NeikiAnalytics.exe

  • Size

    87KB

  • Sample

    240620-m75tnstgla

  • MD5

    32410c9a95d41d48bd7bcaa0d9b1b210

  • SHA1

    34d6a0ccd730ba12977dc671d60807663e572854

  • SHA256

    5ab9d0c60f4a8981c602b4dbb199a8f68a743bbbde207afd18d4064262a32ab9

  • SHA512

    ccff8ad5a3ea1335e5120236847057da0fb406c4e45996130cbab65151e5e8721f6cf81873129463454725ec31b56a1d493a757208c9e46787bc8250d88568d3

  • SSDEEP

    1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhi:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsn

Score
9/10

Malware Config

Targets

    • Target

      5ab9d0c60f4a8981c602b4dbb199a8f68a743bbbde207afd18d4064262a32ab9_NeikiAnalytics.exe

    • Size

      87KB

    • MD5

      32410c9a95d41d48bd7bcaa0d9b1b210

    • SHA1

      34d6a0ccd730ba12977dc671d60807663e572854

    • SHA256

      5ab9d0c60f4a8981c602b4dbb199a8f68a743bbbde207afd18d4064262a32ab9

    • SHA512

      ccff8ad5a3ea1335e5120236847057da0fb406c4e45996130cbab65151e5e8721f6cf81873129463454725ec31b56a1d493a757208c9e46787bc8250d88568d3

    • SSDEEP

      1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhi:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsn

    Score
    9/10
    • Renames multiple (3451) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

MITRE ATT&CK Matrix

Tasks