Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

3e57b94a65...cs.exe

windows7-x64

9

3e57b94a65...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3e57b94a652f855dd2f930adecd3693d80dc4d517f892c831252611c886ca0ba_NeikiAnalytics.exe

  • Size

    76KB

  • Sample

    240701-hv25sssckj

  • MD5

    56d0f9329bfa8214bcb39e3fa06431e0

  • SHA1

    f8c6f070eb1571e393f04b9280ab6a73e02eeec8

  • SHA256

    3e57b94a652f855dd2f930adecd3693d80dc4d517f892c831252611c886ca0ba

  • SHA512

    9c994ccbacade3eb7428447aa12e944775e5b518c45b1bfa35dc94e0362670f390bb5653510fc928d77872ec31198259f13beb9a51753a97cf6338196ff6a7c4

  • SSDEEP

    1536:/7ZQpApze+eJfFpsJOfFpsJeFrxFrd4NK/Kk:9QWpze+eJfFpsJOfFpsJ0rDrJ

Score
9/10
ransomware

Malware Config

Targets

    • Target

      3e57b94a652f855dd2f930adecd3693d80dc4d517f892c831252611c886ca0ba_NeikiAnalytics.exe

    • Size

      76KB

    • MD5

      56d0f9329bfa8214bcb39e3fa06431e0

    • SHA1

      f8c6f070eb1571e393f04b9280ab6a73e02eeec8

    • SHA256

      3e57b94a652f855dd2f930adecd3693d80dc4d517f892c831252611c886ca0ba

    • SHA512

      9c994ccbacade3eb7428447aa12e944775e5b518c45b1bfa35dc94e0362670f390bb5653510fc928d77872ec31198259f13beb9a51753a97cf6338196ff6a7c4

    • SSDEEP

      1536:/7ZQpApze+eJfFpsJOfFpsJeFrxFrd4NK/Kk:9QWpze+eJfFpsJOfFpsJ0rDrJ

    Score
    9/10
    ransomware

    • Renames multiple (3436) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks