Overview

overview

9

Static

static

7

279eeffd9c...cs.exe

windows7-x64

9

279eeffd9c...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    279eeffd9ceaa991343907960bdfe0a0_NeikiAnalytics

  • Size

    108KB

  • Sample

    240515-ys2z1shd5x

  • MD5

    279eeffd9ceaa991343907960bdfe0a0

  • SHA1

    70871c3dbeecb24c0fe10b3d997bc245a7436fb0

  • SHA256

    9384f8d03f8060d42133929e0fbcbd5fb5bd4c367604d68d72ed63251a743e59

  • SHA512

    ae3720871f7699fb8977ba983dc9ac4561843fe4757c9e395e2d02349a3422efff767b99929123f0b2ab6c0101688781d8dbc7cd04b03ebb87449187b820f62a

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hfS/q:hfAIuZAIuYSMjoqtMHfhfqnq

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      279eeffd9ceaa991343907960bdfe0a0_NeikiAnalytics

    • Size

      108KB

    • MD5

      279eeffd9ceaa991343907960bdfe0a0

    • SHA1

      70871c3dbeecb24c0fe10b3d997bc245a7436fb0

    • SHA256

      9384f8d03f8060d42133929e0fbcbd5fb5bd4c367604d68d72ed63251a743e59

    • SHA512

      ae3720871f7699fb8977ba983dc9ac4561843fe4757c9e395e2d02349a3422efff767b99929123f0b2ab6c0101688781d8dbc7cd04b03ebb87449187b820f62a

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hfS/q:hfAIuZAIuYSMjoqtMHfhfqnq

    Score
    9/10
    ransomwareupx

    • Renames multiple (3435) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks