Overview

overview

9

Static

static

3

0072cf94c0...cs.exe

windows7-x64

9

0072cf94c0...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    0072cf94c006715e816522c1889e16c0_NeikiAnalytics

  • Size

    63KB

  • Sample

    240512-map2ysba3x

  • MD5

    0072cf94c006715e816522c1889e16c0

  • SHA1

    47dbdacc09c5d3e10e34bf1f8041428f673f9354

  • SHA256

    5354438f7ff8f350277e16fbfb2a5659e1ee6322aeccc4d40ae38af8cc9222c9

  • SHA512

    ac331f093f006c266bc2283d93e4e2e3a021e00c6851cdc74a53c8262d667ab16b1952eea0ac6dc95eade0982eac47330cc84fe7db854986a363fc9ee3dd7ca2

  • SSDEEP

    768:W7BlpDpARFbhYQkQjjI6OvSox/6Sox/hotyuo:W7ZDpApYbWjIlE77uo

Score
9/10
ransomware

Malware Config

Targets

    • Target

      0072cf94c006715e816522c1889e16c0_NeikiAnalytics

    • Size

      63KB

    • MD5

      0072cf94c006715e816522c1889e16c0

    • SHA1

      47dbdacc09c5d3e10e34bf1f8041428f673f9354

    • SHA256

      5354438f7ff8f350277e16fbfb2a5659e1ee6322aeccc4d40ae38af8cc9222c9

    • SHA512

      ac331f093f006c266bc2283d93e4e2e3a021e00c6851cdc74a53c8262d667ab16b1952eea0ac6dc95eade0982eac47330cc84fe7db854986a363fc9ee3dd7ca2

    • SSDEEP

      768:W7BlpDpARFbhYQkQjjI6OvSox/6Sox/hotyuo:W7ZDpApYbWjIlE77uo

    Score
    9/10
    ransomware

    • Renames multiple (3559) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks