c00951ac12ecd342f1fdf598fc0b07e4ed2c2d08eea78d47ed401f00ec2183df | Triage

Submit
Reports

Overview

overview

9

Static

static

7

ab47ffbc9e...cs.exe

windows7-x64

9

ab47ffbc9e...cs.exe

windows10-2004-x64

9

Sharing

General

Target

ab47ffbc9e2f9cb32319a4b2b7815de0_NeikiAnalytics
Size

123KB
Sample

240510-j3kfdscc5x
MD5

ab47ffbc9e2f9cb32319a4b2b7815de0
SHA1

9b276dee057b0032c181ffdff2777206bb1cffd6
SHA256

c00951ac12ecd342f1fdf598fc0b07e4ed2c2d08eea78d47ed401f00ec2183df
SHA512

a1d202be317686e74e290708c39adbec8c11a3664f04c1c8733fa146dd8b9ad8ff74401d336a067ab2db400c54ee9959f8a2dc6a97865f7676af3476ad1c9cf2
SSDEEP

1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCe:+nymCAIuZAIuYSMjoqtMHfhfz

Score

9^/10

ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

ab47ffbc9e2f9cb32319a4b2b7815de0_NeikiAnalytics.exe

Resource

win7-20240221-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

ab47ffbc9e2f9cb32319a4b2b7815de0_NeikiAnalytics.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  ab47ffbc9e2f9cb32319a4b2b7815de0_NeikiAnalytics
- Size
  
  123KB
- MD5
  
  ab47ffbc9e2f9cb32319a4b2b7815de0
- SHA1
  
  9b276dee057b0032c181ffdff2777206bb1cffd6
- SHA256
  
  c00951ac12ecd342f1fdf598fc0b07e4ed2c2d08eea78d47ed401f00ec2183df
- SHA512
  
  a1d202be317686e74e290708c39adbec8c11a3664f04c1c8733fa146dd8b9ad8ff74401d336a067ab2db400c54ee9959f8a2dc6a97865f7676af3476ad1c9cf2
- SSDEEP
  
  1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCe:+nymCAIuZAIuYSMjoqtMHfhfz
Score

9^/10

ransomware upx
- Renames multiple (535) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy