Overview

overview

9

Static

static

3

a5bc65d3d0...cs.exe

windows7-x64

9

a5bc65d3d0...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a5bc65d3d0e0091917263a9ce2436730_NeikiAnalytics

  • Size

    117KB

  • Sample

    240514-jl7vcsff7t

  • MD5

    a5bc65d3d0e0091917263a9ce2436730

  • SHA1

    d880f0342d3fc9f56e0f83b510bd4db19921b396

  • SHA256

    cb055fd7f4021b0b8ccba37114441feee87918ebb2562797b5c4b30a9c1da2b2

  • SHA512

    cedc333bce8c14e8056e5ed14ce260a2856b831c25711655bc0db49a4a780f0fcb889ff8ec3e012bcd53dab348bd5764132a4643568cd29c96cf5e51008e252f

  • SSDEEP

    3072:6e7WpHIyRF9ESWu0SWuDmhSauvEKxVTLJtxoVz8FUDrYYaCusjdEKxVTLJtxoVz7:RqlIyFESWu0SWuGSX

Score
9/10
ransomware

Malware Config

Targets

    • Target

      a5bc65d3d0e0091917263a9ce2436730_NeikiAnalytics

    • Size

      117KB

    • MD5

      a5bc65d3d0e0091917263a9ce2436730

    • SHA1

      d880f0342d3fc9f56e0f83b510bd4db19921b396

    • SHA256

      cb055fd7f4021b0b8ccba37114441feee87918ebb2562797b5c4b30a9c1da2b2

    • SHA512

      cedc333bce8c14e8056e5ed14ce260a2856b831c25711655bc0db49a4a780f0fcb889ff8ec3e012bcd53dab348bd5764132a4643568cd29c96cf5e51008e252f

    • SSDEEP

      3072:6e7WpHIyRF9ESWu0SWuDmhSauvEKxVTLJtxoVz8FUDrYYaCusjdEKxVTLJtxoVz7:RqlIyFESWu0SWuGSX

    Score
    9/10
    ransomware

    • Renames multiple (3460) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks