Overview

overview

9

Static

static

3

ff2f5aaf81...KI.exe

windows7-x64

9

ff2f5aaf81...KI.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    ff2f5aaf811adfe853d57083b34ccc80_NEIKI

  • Size

    85KB

  • Sample

    240508-hnl51aaf59

  • MD5

    ff2f5aaf811adfe853d57083b34ccc80

  • SHA1

    48266b110da30a0d6632f5fee0f063d09a32eaff

  • SHA256

    584f6aacd6a7ea8b359cbded9f2d691ce3efbcfa324d424208cb26de33c95b7a

  • SHA512

    6931b2faa6b42dbf2dce51cc1acf6dc8d557dcfd4d3c1517bd81e82f0d4377e9d2bd9abc05624b0556089500c0340073e48a456f1798270840d97b6fb884ee04

  • SSDEEP

    1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eJG/x/tuTUD:6e7WpMaxeb0CYJ97lEYNR73e+eKZtu0

Score
9/10
ransomware

Malware Config

Targets

    • Target

      ff2f5aaf811adfe853d57083b34ccc80_NEIKI

    • Size

      85KB

    • MD5

      ff2f5aaf811adfe853d57083b34ccc80

    • SHA1

      48266b110da30a0d6632f5fee0f063d09a32eaff

    • SHA256

      584f6aacd6a7ea8b359cbded9f2d691ce3efbcfa324d424208cb26de33c95b7a

    • SHA512

      6931b2faa6b42dbf2dce51cc1acf6dc8d557dcfd4d3c1517bd81e82f0d4377e9d2bd9abc05624b0556089500c0340073e48a456f1798270840d97b6fb884ee04

    • SSDEEP

      1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eJG/x/tuTUD:6e7WpMaxeb0CYJ97lEYNR73e+eKZtu0

    Score
    9/10
    ransomware

    • Renames multiple (3498) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks