Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    03fd36b986963230bedef6c535b28f30ee8c07223f3f4244e056d6a8c5710fd8_NeikiAnalytics.exe

  • Size

    135KB

  • Sample

    240629-1xf98axcng

  • MD5

    e8a633b0588624f3d0155adedc3003f0

  • SHA1

    ddd6390390a6123876057176072dd8338d2777fb

  • SHA256

    03fd36b986963230bedef6c535b28f30ee8c07223f3f4244e056d6a8c5710fd8

  • SHA512

    4e2f9881d375196fcea304c768a7158acfada24d6bec0125f71ec87653c8aea7269efe89e5fff170310580cf6ff4739963cda50838efdbb99565b7ee109e8cf6

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zx5858lTWn1++PJHJXA/OsIZfzc3/Q8Z:fnyiQSoo858RQSoo858d

Score
9/10

Malware Config

Targets

    • Target

      03fd36b986963230bedef6c535b28f30ee8c07223f3f4244e056d6a8c5710fd8_NeikiAnalytics.exe

    • Size

      135KB

    • MD5

      e8a633b0588624f3d0155adedc3003f0

    • SHA1

      ddd6390390a6123876057176072dd8338d2777fb

    • SHA256

      03fd36b986963230bedef6c535b28f30ee8c07223f3f4244e056d6a8c5710fd8

    • SHA512

      4e2f9881d375196fcea304c768a7158acfada24d6bec0125f71ec87653c8aea7269efe89e5fff170310580cf6ff4739963cda50838efdbb99565b7ee109e8cf6

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zx5858lTWn1++PJHJXA/OsIZfzc3/Q8Z:fnyiQSoo858RQSoo858d

    Score
    9/10
    • Renames multiple (3444) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks