Overview

overview

9

Static

static

3

176fdad8c6...KI.exe

windows7-x64

9

176fdad8c6...KI.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    176fdad8c666d430b6d8e903ea6a0e60_NEIKI

  • Size

    69KB

  • Sample

    240508-jnzlrscf82

  • MD5

    176fdad8c666d430b6d8e903ea6a0e60

  • SHA1

    dfd2f647d1d1329547a763283aafff304152af93

  • SHA256

    1cb18c8fbf628b38571ba894624aae5537c1fac26fb9681df3d000a3c5b2fdad

  • SHA512

    bb19296925c3da447eb7f14b543bb7e98fddfd25820c9eba10429a373ebf09ee7c7505a8fc465a3777e89b34b18b6dadc5e10e9828b9b4ce504dca85d6e2268f

  • SSDEEP

    768:W7BlpDpARFbhYQkQjjI6OvSox/6Sox/hotyuftxtjYJIJDYJIJX66Flp:W7ZDpApYbWjIlE77ufL2e+e16alp

Score
9/10
ransomware

Malware Config

Targets

    • Target

      176fdad8c666d430b6d8e903ea6a0e60_NEIKI

    • Size

      69KB

    • MD5

      176fdad8c666d430b6d8e903ea6a0e60

    • SHA1

      dfd2f647d1d1329547a763283aafff304152af93

    • SHA256

      1cb18c8fbf628b38571ba894624aae5537c1fac26fb9681df3d000a3c5b2fdad

    • SHA512

      bb19296925c3da447eb7f14b543bb7e98fddfd25820c9eba10429a373ebf09ee7c7505a8fc465a3777e89b34b18b6dadc5e10e9828b9b4ce504dca85d6e2268f

    • SSDEEP

      768:W7BlpDpARFbhYQkQjjI6OvSox/6Sox/hotyuftxtjYJIJDYJIJX66Flp:W7ZDpApYbWjIlE77ufL2e+e16alp

    Score
    9/10
    ransomware

    • Renames multiple (3691) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks