Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    68b15a625dcde8a3777b66474ae4819d5f22d260f2afb62762053f1be2481103_NeikiAnalytics.exe

  • Size

    128KB

  • Sample

    240629-fssr8s1glf

  • MD5

    cce8bba886259f03957f447bbc2046c0

  • SHA1

    81e8f474603353b3b75455e1e3bf94fd695197de

  • SHA256

    68b15a625dcde8a3777b66474ae4819d5f22d260f2afb62762053f1be2481103

  • SHA512

    10b06cbab51c8ec4eeaf840db8acbc2cb965aed393489898aa69e4e76c6518cd555470f675303e07066186a11c88e976067e9b8eb820b21b608ff6e0502ebd0d

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8MTWn1++PJHJXA/OsIZfzc3/Q8J:fnyiQSoHQSo2

Score
9/10

Malware Config

Targets

    • Target

      68b15a625dcde8a3777b66474ae4819d5f22d260f2afb62762053f1be2481103_NeikiAnalytics.exe

    • Size

      128KB

    • MD5

      cce8bba886259f03957f447bbc2046c0

    • SHA1

      81e8f474603353b3b75455e1e3bf94fd695197de

    • SHA256

      68b15a625dcde8a3777b66474ae4819d5f22d260f2afb62762053f1be2481103

    • SHA512

      10b06cbab51c8ec4eeaf840db8acbc2cb965aed393489898aa69e4e76c6518cd555470f675303e07066186a11c88e976067e9b8eb820b21b608ff6e0502ebd0d

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8MTWn1++PJHJXA/OsIZfzc3/Q8J:fnyiQSoHQSo2

    Score
    9/10
    • Renames multiple (3449) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks