Overview

overview

9

Static

static

7

30432fd62f...cs.exe

windows7-x64

9

30432fd62f...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    30432fd62f6c90d8242f79fe06914530_NeikiAnalytics

  • Size

    134KB

  • Sample

    240513-2y8ljahg42

  • MD5

    30432fd62f6c90d8242f79fe06914530

  • SHA1

    89af17e5ced882e4e4100c623b7a22f8cde84702

  • SHA256

    c7ea7a829ecd2482ad41561526fb384e5d12be178c9a4e895d8a73a424236da6

  • SHA512

    66d017b6fb5717192cd35f334ed4483cf6208d5d83142d7c562e18be97bc7d48151b58d1723e4447f506b53b5737deec1b0e4871fd63a83cd9538872f7f26df1

  • SSDEEP

    1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCw:+nymCAIuZAIuYSMjoqtMHfhf5Sskc

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      30432fd62f6c90d8242f79fe06914530_NeikiAnalytics

    • Size

      134KB

    • MD5

      30432fd62f6c90d8242f79fe06914530

    • SHA1

      89af17e5ced882e4e4100c623b7a22f8cde84702

    • SHA256

      c7ea7a829ecd2482ad41561526fb384e5d12be178c9a4e895d8a73a424236da6

    • SHA512

      66d017b6fb5717192cd35f334ed4483cf6208d5d83142d7c562e18be97bc7d48151b58d1723e4447f506b53b5737deec1b0e4871fd63a83cd9538872f7f26df1

    • SSDEEP

      1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCw:+nymCAIuZAIuYSMjoqtMHfhf5Sskc

    Score
    9/10
    ransomwareupx

    • Renames multiple (3432) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks