Overview

overview

9

Static

static

7

224c435737...KI.exe

windows7-x64

9

224c435737...KI.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    224c435737082bde6ddd2a8dd500c720_NEIKI

  • Size

    133KB

  • Sample

    240508-j3wtesdd77

  • MD5

    224c435737082bde6ddd2a8dd500c720

  • SHA1

    6d7d7acb32d87d87e747ad9752a031e8cfd66f65

  • SHA256

    237dc273f905a1f6f3643e83fc5388d05fe5533b9421c23697a541a794480f15

  • SHA512

    cc46051b5dc7985d25c0518743d83a37c5bb5ae19c32347d9a5f599d4736025ff6a9a62a051fa6ed235bd8a5709af4a1a391bd3b3a9fb55de30242c15c852029

  • SSDEEP

    3072:+nymCAIuZAIuYSMjoqtMHfhf7H0WH0rnb:JmCAIuZAIuDMVtM/1H0WH0P

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      224c435737082bde6ddd2a8dd500c720_NEIKI

    • Size

      133KB

    • MD5

      224c435737082bde6ddd2a8dd500c720

    • SHA1

      6d7d7acb32d87d87e747ad9752a031e8cfd66f65

    • SHA256

      237dc273f905a1f6f3643e83fc5388d05fe5533b9421c23697a541a794480f15

    • SHA512

      cc46051b5dc7985d25c0518743d83a37c5bb5ae19c32347d9a5f599d4736025ff6a9a62a051fa6ed235bd8a5709af4a1a391bd3b3a9fb55de30242c15c852029

    • SSDEEP

      3072:+nymCAIuZAIuYSMjoqtMHfhf7H0WH0rnb:JmCAIuZAIuDMVtM/1H0WH0P

    Score
    9/10
    ransomwareupx

    • Renames multiple (3430) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks