Overview

overview

9

Static

static

7

5e5f60de96...cs.exe

windows7-x64

9

5e5f60de96...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    5e5f60de96b2f104d3ee302f8ee64b70_NeikiAnalytics

  • Size

    109KB

  • Sample

    240516-ag75wsbf22

  • MD5

    5e5f60de96b2f104d3ee302f8ee64b70

  • SHA1

    da3d954f1220effa79189726b5bda250d9f86add

  • SHA256

    9f9e55b9337c329c9c8809f19dc69c2a7370fe8f60b9564648b13bbbb4486a36

  • SHA512

    2a0606ca46e7bc09488db775cda460489ed3d1dd4806d32833a9813660656283bdbde8c715498ac931a74bbf755cdb7a050043deb79b92c1c815658c1eced951

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hfRb1:hfAIuZAIuYSMjoqtMHfhfj

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      5e5f60de96b2f104d3ee302f8ee64b70_NeikiAnalytics

    • Size

      109KB

    • MD5

      5e5f60de96b2f104d3ee302f8ee64b70

    • SHA1

      da3d954f1220effa79189726b5bda250d9f86add

    • SHA256

      9f9e55b9337c329c9c8809f19dc69c2a7370fe8f60b9564648b13bbbb4486a36

    • SHA512

      2a0606ca46e7bc09488db775cda460489ed3d1dd4806d32833a9813660656283bdbde8c715498ac931a74bbf755cdb7a050043deb79b92c1c815658c1eced951

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hfRb1:hfAIuZAIuYSMjoqtMHfhfj

    Score
    9/10
    ransomwareupx

    • Renames multiple (3444) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks