Overview

overview

9

Static

static

7

a9b726c465...cs.exe

windows7-x64

9

a9b726c465...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    a9b726c46508d680985b8184aee77310_NeikiAnalytics

  • Size

    411KB

  • Sample

    240511-klnxxshe9w

  • MD5

    a9b726c46508d680985b8184aee77310

  • SHA1

    5314fe0188fbb0bbf45404bab7a163b62009982f

  • SHA256

    e159bb555db516b5609c45211fd18ff28283d8db963d903cb24aad7cada7b5a5

  • SHA512

    958966362fcdeca50645db78283a923bf3e3049ff7d3cb068f3e605a2b90762d85359fbe1746839b6b01139d67d45cef7f34c5203bc6f02c240bafde923dbd08

  • SSDEEP

    12288:7AIuZAIuOJcnBrEf2Ytz2R4CLyFddF8/0ys31fux+MTYC9ZPfKS4alper1RVzcR4:IJcnBrEf2Ytz2R4CLyFddF8/0ys31fuu

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      a9b726c46508d680985b8184aee77310_NeikiAnalytics

    • Size

      411KB

    • MD5

      a9b726c46508d680985b8184aee77310

    • SHA1

      5314fe0188fbb0bbf45404bab7a163b62009982f

    • SHA256

      e159bb555db516b5609c45211fd18ff28283d8db963d903cb24aad7cada7b5a5

    • SHA512

      958966362fcdeca50645db78283a923bf3e3049ff7d3cb068f3e605a2b90762d85359fbe1746839b6b01139d67d45cef7f34c5203bc6f02c240bafde923dbd08

    • SSDEEP

      12288:7AIuZAIuOJcnBrEf2Ytz2R4CLyFddF8/0ys31fux+MTYC9ZPfKS4alper1RVzcR4:IJcnBrEf2Ytz2R4CLyFddF8/0ys31fuu

    Score
    9/10
    ransomwareupx

    • Renames multiple (2536) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks