Overview

overview

9

Static

static

7

70e26914a6...KI.exe

windows7-x64

9

70e26914a6...KI.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    70e26914a66fea1fb68017fded463520_NEIKI

  • Size

    130KB

  • Sample

    240508-abh9ksad78

  • MD5

    70e26914a66fea1fb68017fded463520

  • SHA1

    30fac7972c6410ce78c5895d858a3fbd1c5e28a0

  • SHA256

    7188d5c8860f84eae4d0aa154a91a870ba0d2fce5568620a3fe696ec0f0527c2

  • SHA512

    a6fc0cfad8ceb675859f2cad5686810b31123463afaeb22f9685740d1ef029a83ea6fe9ed957e5c4303a6071a5f477b6c8e465202a667b8e00d86a2c4995f792

  • SSDEEP

    1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCc:+nymCAIuZAIuYSMjoqtMHfhfqnG

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      70e26914a66fea1fb68017fded463520_NEIKI

    • Size

      130KB

    • MD5

      70e26914a66fea1fb68017fded463520

    • SHA1

      30fac7972c6410ce78c5895d858a3fbd1c5e28a0

    • SHA256

      7188d5c8860f84eae4d0aa154a91a870ba0d2fce5568620a3fe696ec0f0527c2

    • SHA512

      a6fc0cfad8ceb675859f2cad5686810b31123463afaeb22f9685740d1ef029a83ea6fe9ed957e5c4303a6071a5f477b6c8e465202a667b8e00d86a2c4995f792

    • SSDEEP

      1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCc:+nymCAIuZAIuYSMjoqtMHfhfqnG

    Score
    9/10
    ransomwareupx

    • Renames multiple (3441) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks