Overview

overview

9

Static

static

7

46d2b3a0b9...cs.exe

windows7-x64

9

46d2b3a0b9...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    46d2b3a0b9f181ee80240ead37a765d0_NeikiAnalytics

  • Size

    109KB

  • Sample

    240514-bccnvsdb84

  • MD5

    46d2b3a0b9f181ee80240ead37a765d0

  • SHA1

    dff169245f495351fb85b091daaa90b9190dba48

  • SHA256

    6e0d9ef77f727badcd3530c8a728f6487aff155f4b404f37d75b169b4fe311e3

  • SHA512

    c9558c77e87a3a4d6967ccd0f129527fd58a176e04725a4a8521ee963ef6791e5b2e3b91ce4c7355c954d439dcc6435dfc34b4b906ce3f83f95c2e957092d204

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf5S8:hfAIuZAIuYSMjoqtMHfhf5Ssko

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      46d2b3a0b9f181ee80240ead37a765d0_NeikiAnalytics

    • Size

      109KB

    • MD5

      46d2b3a0b9f181ee80240ead37a765d0

    • SHA1

      dff169245f495351fb85b091daaa90b9190dba48

    • SHA256

      6e0d9ef77f727badcd3530c8a728f6487aff155f4b404f37d75b169b4fe311e3

    • SHA512

      c9558c77e87a3a4d6967ccd0f129527fd58a176e04725a4a8521ee963ef6791e5b2e3b91ce4c7355c954d439dcc6435dfc34b4b906ce3f83f95c2e957092d204

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf5S8:hfAIuZAIuYSMjoqtMHfhf5Ssko

    Score
    9/10
    ransomwareupx

    • Renames multiple (3436) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks