074c0091fbc391813d1312b8aecdd6b879b04983085d665d9d582ac40f687761 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

719241d675...cs.exe

windows7-x64

9

719241d675...cs.exe

windows10-2004-x64

9

Sharing

General

Target

719241d675be685d8aa91fac0ed78250_NeikiAnalytics.exe
Size

173KB
Sample

240517-bc9zcsac62
MD5

719241d675be685d8aa91fac0ed78250
SHA1

6acd45485f5ce2bc6158d79654cdceee08696a81
SHA256

074c0091fbc391813d1312b8aecdd6b879b04983085d665d9d582ac40f687761
SHA512

2c219a486a4b1e4ba2692ac2b4eba8f85d6c5d9dc928ce8858a3becdb4643f3474cbfc064b37d951da9220017807e73b6107538d51c76a6398a99859a358a93f
SSDEEP

3072:6rWpcOPxPke+e3fFpsJOfFpsJbgEegprWpcOPxPke+e3fFpsJOfFpsJbgEego:tFPxPke+eIegQFPxPke+eIego

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

719241d675be685d8aa91fac0ed78250_NeikiAnalytics.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

719241d675be685d8aa91fac0ed78250_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  719241d675be685d8aa91fac0ed78250_NeikiAnalytics.exe
- Size
  
  173KB
- MD5
  
  719241d675be685d8aa91fac0ed78250
- SHA1
  
  6acd45485f5ce2bc6158d79654cdceee08696a81
- SHA256
  
  074c0091fbc391813d1312b8aecdd6b879b04983085d665d9d582ac40f687761
- SHA512
  
  2c219a486a4b1e4ba2692ac2b4eba8f85d6c5d9dc928ce8858a3becdb4643f3474cbfc064b37d951da9220017807e73b6107538d51c76a6398a99859a358a93f
- SSDEEP
  
  3072:6rWpcOPxPke+e3fFpsJOfFpsJbgEegprWpcOPxPke+e3fFpsJOfFpsJbgEego:tFPxPke+eIegQFPxPke+eIego
Score

9^/10

ransomware
- Renames multiple (730) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy