Overview

overview

9

Static

static

7

c589f5a1e6...cs.exe

windows7-x64

9

c589f5a1e6...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    c589f5a1e646896f3edb4ef78d7f5730_NeikiAnalytics

  • Size

    97KB

  • Sample

    240514-n526faed7v

  • MD5

    c589f5a1e646896f3edb4ef78d7f5730

  • SHA1

    69c0adbf7347375ad232ea39e6141a5e8a16f6d5

  • SHA256

    01efad4b29bb06e7505f7fb9d431f7d5826071665fb3c617c735a2f28025c34a

  • SHA512

    392893670f6a635db2ed47ab7ea9d7e40654bf96d256dd0d143afb42395cda2ef20d5e3f50b205cf8212cab59c06a3fe8ba7a13c4cd17c96a8d35f79a1912a55

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf96c:hfAIuZAIuYSMjoqtMHfhfX

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      c589f5a1e646896f3edb4ef78d7f5730_NeikiAnalytics

    • Size

      97KB

    • MD5

      c589f5a1e646896f3edb4ef78d7f5730

    • SHA1

      69c0adbf7347375ad232ea39e6141a5e8a16f6d5

    • SHA256

      01efad4b29bb06e7505f7fb9d431f7d5826071665fb3c617c735a2f28025c34a

    • SHA512

      392893670f6a635db2ed47ab7ea9d7e40654bf96d256dd0d143afb42395cda2ef20d5e3f50b205cf8212cab59c06a3fe8ba7a13c4cd17c96a8d35f79a1912a55

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf96c:hfAIuZAIuYSMjoqtMHfhfX

    Score
    9/10
    ransomwareupx

    • Renames multiple (3444) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks