Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

5770e86bb3...cs.exe

windows7-x64

9

5770e86bb3...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5770e86bb3dec9d7be206598f77ece86f95dbe6a902fd086104bf30cee009206_NeikiAnalytics.exe

  • Size

    90KB

  • Sample

    240624-ke8zhstalg

  • MD5

    83e9151f1ebe3e596bc2600927b4eed0

  • SHA1

    d138c85f0aecbfba6775cafd49d9b9dc3ca7118b

  • SHA256

    5770e86bb3dec9d7be206598f77ece86f95dbe6a902fd086104bf30cee009206

  • SHA512

    b9be6c8e60b0afe2176a68ee18410520ad46bd45dd1d304587342ebd2b5b20b08d6c6fcd7c833032a4767dfc708d47928b8810c2167279a41b73b708089c4dde

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsxe+eX7n97nPll7n97nX:fnyiQSohsUsxe+erZLZX

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      5770e86bb3dec9d7be206598f77ece86f95dbe6a902fd086104bf30cee009206_NeikiAnalytics.exe

    • Size

      90KB

    • MD5

      83e9151f1ebe3e596bc2600927b4eed0

    • SHA1

      d138c85f0aecbfba6775cafd49d9b9dc3ca7118b

    • SHA256

      5770e86bb3dec9d7be206598f77ece86f95dbe6a902fd086104bf30cee009206

    • SHA512

      b9be6c8e60b0afe2176a68ee18410520ad46bd45dd1d304587342ebd2b5b20b08d6c6fcd7c833032a4767dfc708d47928b8810c2167279a41b73b708089c4dde

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsxe+eX7n97nPll7n97nX:fnyiQSohsUsxe+erZLZX

    Score
    9/10
    ransomwareupx

    • Renames multiple (3494) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks