Overview

overview

9

Static

static

3

d6b239efa9...KI.exe

windows7-x64

9

d6b239efa9...KI.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    d6b239efa9eae0faaa55a82ba6104a40_NEIKI

  • Size

    100KB

  • Sample

    240508-fgfcrsec56

  • MD5

    d6b239efa9eae0faaa55a82ba6104a40

  • SHA1

    318f218da178da61bdaea012d52f90a602e23d6e

  • SHA256

    486f91652b03bfb18b30352cda00646edf938021e9cf2c54b7b4bdb4a429714b

  • SHA512

    f2f1d00d1ada346d3438d10119230cdb9c4ad2bc0cd0a68c7b6fb267d06cccc391e834f9ff4b575c0aaa7b6e08e5dcd6a871c1e2fbf19c09cd3beb7bccd256d0

  • SSDEEP

    3072:6e7WpHIyRF9ESWu0SWuDmhSauvEKxVTLJtxoVz8FUDrYYaCusjdEKxVTLJtxoVz7:RqlIyFESWu0SWuGS/

Score
9/10
ransomware

Malware Config

Targets

    • Target

      d6b239efa9eae0faaa55a82ba6104a40_NEIKI

    • Size

      100KB

    • MD5

      d6b239efa9eae0faaa55a82ba6104a40

    • SHA1

      318f218da178da61bdaea012d52f90a602e23d6e

    • SHA256

      486f91652b03bfb18b30352cda00646edf938021e9cf2c54b7b4bdb4a429714b

    • SHA512

      f2f1d00d1ada346d3438d10119230cdb9c4ad2bc0cd0a68c7b6fb267d06cccc391e834f9ff4b575c0aaa7b6e08e5dcd6a871c1e2fbf19c09cd3beb7bccd256d0

    • SSDEEP

      3072:6e7WpHIyRF9ESWu0SWuDmhSauvEKxVTLJtxoVz8FUDrYYaCusjdEKxVTLJtxoVz7:RqlIyFESWu0SWuGS/

    Score
    9/10
    ransomware

    • Renames multiple (3505) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks