Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

0ce3b91eb7...cs.exe

windows7-x64

9

0ce3b91eb7...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0ce3b91eb7e59fe394a84c7b9abc6a760ba0d0748c471b901e25fb9870133f06_NeikiAnalytics.exe

  • Size

    60KB

  • Sample

    240630-p2gk1a1eqm

  • MD5

    703136979b77c37cd3f7f13308c7c550

  • SHA1

    fa6dfe50339d2877dd9189a4c51241b1e80e61b2

  • SHA256

    0ce3b91eb7e59fe394a84c7b9abc6a760ba0d0748c471b901e25fb9870133f06

  • SHA512

    d24ae2062e5f40dabd1581d3c564404bb246d47edc5355e40f839ae6ba4ceb72d63f8a8359c5c5933b2813cc20648e7400b9ba9cce07ee8a60283b7a3f648861

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8Q8/8RYlaaGaa2:KQSoskRYr

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      0ce3b91eb7e59fe394a84c7b9abc6a760ba0d0748c471b901e25fb9870133f06_NeikiAnalytics.exe

    • Size

      60KB

    • MD5

      703136979b77c37cd3f7f13308c7c550

    • SHA1

      fa6dfe50339d2877dd9189a4c51241b1e80e61b2

    • SHA256

      0ce3b91eb7e59fe394a84c7b9abc6a760ba0d0748c471b901e25fb9870133f06

    • SHA512

      d24ae2062e5f40dabd1581d3c564404bb246d47edc5355e40f839ae6ba4ceb72d63f8a8359c5c5933b2813cc20648e7400b9ba9cce07ee8a60283b7a3f648861

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8Q8/8RYlaaGaa2:KQSoskRYr

    Score
    9/10
    ransomwareupx

    • Renames multiple (3433) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks