Overview

overview

9

Static

static

3

18c9e5d1c9...cs.exe

windows7-x64

9

18c9e5d1c9...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    18c9e5d1c95fb10db9d1933205970f30_NeikiAnalytics

  • Size

    269KB

  • Sample

    240509-21kmgsfb34

  • MD5

    18c9e5d1c95fb10db9d1933205970f30

  • SHA1

    2cc52c57504f3dbad283b4ed543c936f4923083f

  • SHA256

    2ad7d2fccac6d44e04fc05491abe771a73ee82eb8f4b8b5dd487d92997c6e1db

  • SHA512

    081a9429e7c07bd7ec9049d3934e0d198cc61d8c0b7d6db1cabc0c79a68f4daf5161bd92d2784344456bcc6c5da6166a87f1035fb317c144c04f551866902c44

  • SSDEEP

    6144:RqlIyFESWu0SWuGS4nNcbLnKjz47fiD+NZXoxSFQJ9:tyKn+bLKjTDgZXof

Score
9/10
ransomware

Malware Config

Targets

    • Target

      18c9e5d1c95fb10db9d1933205970f30_NeikiAnalytics

    • Size

      269KB

    • MD5

      18c9e5d1c95fb10db9d1933205970f30

    • SHA1

      2cc52c57504f3dbad283b4ed543c936f4923083f

    • SHA256

      2ad7d2fccac6d44e04fc05491abe771a73ee82eb8f4b8b5dd487d92997c6e1db

    • SHA512

      081a9429e7c07bd7ec9049d3934e0d198cc61d8c0b7d6db1cabc0c79a68f4daf5161bd92d2784344456bcc6c5da6166a87f1035fb317c144c04f551866902c44

    • SSDEEP

      6144:RqlIyFESWu0SWuGS4nNcbLnKjz47fiD+NZXoxSFQJ9:tyKn+bLKjTDgZXof

    Score
    9/10
    ransomware

    • Renames multiple (2817) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks