Overview

overview

9

Static

static

3

389b84669c...KI.exe

windows7-x64

9

389b84669c...KI.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    389b84669c243f3f824fbb9950c7cb40_NEIKI

  • Size

    76KB

  • Sample

    240507-z6mypabb98

  • MD5

    389b84669c243f3f824fbb9950c7cb40

  • SHA1

    10a17a90663c89221d46090c4cf68fb6c13a95dc

  • SHA256

    a4b1e67a65e50eebe55d8c262e442882639861aeb56bd7044223dec5ebf7829b

  • SHA512

    46ec5b2b89a972f27d9d9f5c97c591357530201c1f983afd458cace3661355d966a0c28920940026deb8dc95aa3cf757fd9fa194117f1408b1d7e30a54179e7f

  • SSDEEP

    768:W7Blp9pARFbhQSox/6Sox/ME4JAIAepE4JAIAeuDlmlQPc3f6Pc3f5TGotuMOiJd:W7Z9pApQESOHepOHe8G+6E65TGAR9v1r

Score
9/10
ransomware

Malware Config

Targets

    • Target

      389b84669c243f3f824fbb9950c7cb40_NEIKI

    • Size

      76KB

    • MD5

      389b84669c243f3f824fbb9950c7cb40

    • SHA1

      10a17a90663c89221d46090c4cf68fb6c13a95dc

    • SHA256

      a4b1e67a65e50eebe55d8c262e442882639861aeb56bd7044223dec5ebf7829b

    • SHA512

      46ec5b2b89a972f27d9d9f5c97c591357530201c1f983afd458cace3661355d966a0c28920940026deb8dc95aa3cf757fd9fa194117f1408b1d7e30a54179e7f

    • SSDEEP

      768:W7Blp9pARFbhQSox/6Sox/ME4JAIAepE4JAIAeuDlmlQPc3f6Pc3f5TGotuMOiJd:W7Z9pApQESOHepOHe8G+6E65TGAR9v1r

    Score
    9/10
    ransomware

    • Renames multiple (3447) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks