Overview

overview

9

Static

static

3

eb6470a106...KI.exe

windows7-x64

9

eb6470a106...KI.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    eb6470a10613d64ebdb8f41ff980d120_NEIKI

  • Size

    104KB

  • Sample

    240508-spvtmsda69

  • MD5

    eb6470a10613d64ebdb8f41ff980d120

  • SHA1

    21641bbfb5068618f146e13e0be756696283ea06

  • SHA256

    ec6c750cd7839895c0c476014c59e4126c54561e6fb026962b57e02620879f57

  • SHA512

    39d57353e15588ef1830225e0b6c95bfc2cfb03cf26b4fbba5c54cb7fc9aaf91d182620d9e3fadff0d2548439ffe505b494f7d510e5c328903745ab278bbd6cf

  • SSDEEP

    768:W7BlpQpARFbh2UM/zX1vqX1vLFB5W5pYJIJDYJIJOO6O2lpHiJOP25LqrH5HiJOe:W7ZQpApjIWe+eoO6O2lpiMZiMA

Score
9/10
ransomware

Malware Config

Targets

    • Target

      eb6470a10613d64ebdb8f41ff980d120_NEIKI

    • Size

      104KB

    • MD5

      eb6470a10613d64ebdb8f41ff980d120

    • SHA1

      21641bbfb5068618f146e13e0be756696283ea06

    • SHA256

      ec6c750cd7839895c0c476014c59e4126c54561e6fb026962b57e02620879f57

    • SHA512

      39d57353e15588ef1830225e0b6c95bfc2cfb03cf26b4fbba5c54cb7fc9aaf91d182620d9e3fadff0d2548439ffe505b494f7d510e5c328903745ab278bbd6cf

    • SSDEEP

      768:W7BlpQpARFbh2UM/zX1vqX1vLFB5W5pYJIJDYJIJOO6O2lpHiJOP25LqrH5HiJOe:W7ZQpApjIWe+eoO6O2lpiMZiMA

    Score
    9/10
    ransomware

    • Renames multiple (3420) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks