Overview

overview

9

Static

static

7

202aaec2d9...KI.exe

windows7-x64

9

202aaec2d9...KI.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    202aaec2d91d9a666a1fc3ca5316a580_NEIKI

  • Size

    84KB

  • Sample

    240507-y1j46sdf7y

  • MD5

    202aaec2d91d9a666a1fc3ca5316a580

  • SHA1

    9def2238b1f12ff0b86cc2b157ebef7fb93f0754

  • SHA256

    572c27af4265f463b5daef5b02411add68bd7f4f0f65f3631eec4c2a405085f8

  • SHA512

    0abf351809d164e6d9bd094aa2cd6a63b48aa632f4249901472b1a83294fe9935fa044970caf0069a217402361f0b79a50705b7d24c2469755dc4ba76b0b62f6

  • SSDEEP

    1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q4xFrphgO:+nyiQSo+hgO

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      202aaec2d91d9a666a1fc3ca5316a580_NEIKI

    • Size

      84KB

    • MD5

      202aaec2d91d9a666a1fc3ca5316a580

    • SHA1

      9def2238b1f12ff0b86cc2b157ebef7fb93f0754

    • SHA256

      572c27af4265f463b5daef5b02411add68bd7f4f0f65f3631eec4c2a405085f8

    • SHA512

      0abf351809d164e6d9bd094aa2cd6a63b48aa632f4249901472b1a83294fe9935fa044970caf0069a217402361f0b79a50705b7d24c2469755dc4ba76b0b62f6

    • SSDEEP

      1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q4xFrphgO:+nyiQSo+hgO

    Score
    9/10
    ransomwareupx

    • Renames multiple (466) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks