Overview

overview

9

Static

static

3

61ad71fe34...KI.exe

windows7-x64

9

61ad71fe34...KI.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    61ad71fe34f1bed27d4384340c3f9586_NEIKI

  • Size

    379KB

  • Sample

    240509-pqcgxace47

  • MD5

    61ad71fe34f1bed27d4384340c3f9586

  • SHA1

    17179dff68de50d6f19fdc6ee16f5566aabcb9f2

  • SHA256

    192f326427aa33de5bac9343077dd3d4951007f688955916cd78264fad862bab

  • SHA512

    cd64fbeb8b0a63922447510b36df4570e47a70045060cdfa7974f4f5418ef00f5c7b3eb0748a8d2d63e419fd837bdb8861e16d3f9fc8ac6228c2b3aa1984a85c

  • SSDEEP

    6144:tFPxPke+eIr9RUxfKIuqBcKxNWdp+bkrdHs1lpaSL4vtFVHPyvewDpgsEhBhgKE:3PxPir9RyiIuGcKbpaSL4vtFVHPyvewd

Score
9/10
ransomware

Malware Config

Targets

    • Target

      61ad71fe34f1bed27d4384340c3f9586_NEIKI

    • Size

      379KB

    • MD5

      61ad71fe34f1bed27d4384340c3f9586

    • SHA1

      17179dff68de50d6f19fdc6ee16f5566aabcb9f2

    • SHA256

      192f326427aa33de5bac9343077dd3d4951007f688955916cd78264fad862bab

    • SHA512

      cd64fbeb8b0a63922447510b36df4570e47a70045060cdfa7974f4f5418ef00f5c7b3eb0748a8d2d63e419fd837bdb8861e16d3f9fc8ac6228c2b3aa1984a85c

    • SSDEEP

      6144:tFPxPke+eIr9RUxfKIuqBcKxNWdp+bkrdHs1lpaSL4vtFVHPyvewDpgsEhBhgKE:3PxPir9RyiIuGcKbpaSL4vtFVHPyvewd

    Score
    9/10
    ransomware

    • Renames multiple (2731) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks