Overview

overview

9

Static

static

3

61cd387cc0...KI.exe

windows7-x64

9

61cd387cc0...KI.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    61cd387cc0d140abb502c3b1b5fce120_NEIKI

  • Size

    100KB

  • Sample

    240507-29y68sgc82

  • MD5

    61cd387cc0d140abb502c3b1b5fce120

  • SHA1

    20ea820c313e41bc9749417c7d24e801898155d7

  • SHA256

    13e33db67cc18a5516ae4bc6e5b8b6bcbb2437188dcad1b404b94bb8130ba4d8

  • SHA512

    a549c4fba95be1bc08ec8fbc218ce0b89defec8455aea9e9212985dea88be1132ea390ca531e7b25826489c368accf49b901456a5ad1054c462d9944606deeb5

  • SSDEEP

    3072:6e7WpHIyRF9ESWu0SWuDmhSauvEKxVTLJtxoVz8FUDrYYaCusjdEKxVTLJtxoVzO:RqlIyFESWu0SWuGSy

Score
9/10
ransomware

Malware Config

Targets

    • Target

      61cd387cc0d140abb502c3b1b5fce120_NEIKI

    • Size

      100KB

    • MD5

      61cd387cc0d140abb502c3b1b5fce120

    • SHA1

      20ea820c313e41bc9749417c7d24e801898155d7

    • SHA256

      13e33db67cc18a5516ae4bc6e5b8b6bcbb2437188dcad1b404b94bb8130ba4d8

    • SHA512

      a549c4fba95be1bc08ec8fbc218ce0b89defec8455aea9e9212985dea88be1132ea390ca531e7b25826489c368accf49b901456a5ad1054c462d9944606deeb5

    • SSDEEP

      3072:6e7WpHIyRF9ESWu0SWuDmhSauvEKxVTLJtxoVz8FUDrYYaCusjdEKxVTLJtxoVzO:RqlIyFESWu0SWuGSy

    Score
    9/10
    ransomware

    • Renames multiple (3455) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks