Overview

overview

9

Static

static

7

266ba36973...cs.exe

windows7-x64

9

266ba36973...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    266ba369735cd03e991c6632c36f41c0_NeikiAnalytics

  • Size

    2.7MB

  • Sample

    240510-24vlvshg88

  • MD5

    266ba369735cd03e991c6632c36f41c0

  • SHA1

    4fc26481cdc922d16157406094f123ca54f6cf17

  • SHA256

    45f4aba23f85e744ca5d87c43d2dd29dac1e9a0deb21747bd0665f4a64d24828

  • SHA512

    599b52b2277ffe6d24d3fff6aa0a1b52701da1c859cb50a89fb00cc3204e5adc60e64eff3e395763e09019b03dedfcd5eaf643011e50dd1a5cc5b71eddc40d5e

  • SSDEEP

    49152:A2x84A+umIJopJVn8htfT72gcVNq2JsHAt5:l64b1IJyJVn8htfT72vVNq2JsHAt5

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      266ba369735cd03e991c6632c36f41c0_NeikiAnalytics

    • Size

      2.7MB

    • MD5

      266ba369735cd03e991c6632c36f41c0

    • SHA1

      4fc26481cdc922d16157406094f123ca54f6cf17

    • SHA256

      45f4aba23f85e744ca5d87c43d2dd29dac1e9a0deb21747bd0665f4a64d24828

    • SHA512

      599b52b2277ffe6d24d3fff6aa0a1b52701da1c859cb50a89fb00cc3204e5adc60e64eff3e395763e09019b03dedfcd5eaf643011e50dd1a5cc5b71eddc40d5e

    • SSDEEP

      49152:A2x84A+umIJopJVn8htfT72gcVNq2JsHAt5:l64b1IJyJVn8htfT72vVNq2JsHAt5

    Score
    9/10
    ransomwareupx

    • Renames multiple (231) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks