Overview

overview

9

Static

static

7

bf44a61635...cs.exe

windows7-x64

9

bf44a61635...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    bf44a61635634308e466381dbe119bb0_NeikiAnalytics.exe

  • Size

    58KB

  • Sample

    240517-g4y9tsde66

  • MD5

    bf44a61635634308e466381dbe119bb0

  • SHA1

    4e187116788b642897fa41b5796b5c470aa36eb7

  • SHA256

    198dba4c9122416c23a07d56b72fce22ea67725d7ad2cbca935f28f9c3e74fec

  • SHA512

    5e666c7cc7a58204ef1ac3f24dafdc31ae6d3df79a409b95f31993c1eb5518d6c9647822b8b795cc3eaf8539596a3f002b5b525c654ab1d25a5aa49f6c903969

  • SSDEEP

    768:67Blpf/FAK65euBT37CPKK0SjHm0CAbLg++PJHJzIWD+dVdCYgck5sIZFufGSY1K:67Zf/FAxTWY1++PJHJXA/OsIZy

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      bf44a61635634308e466381dbe119bb0_NeikiAnalytics.exe

    • Size

      58KB

    • MD5

      bf44a61635634308e466381dbe119bb0

    • SHA1

      4e187116788b642897fa41b5796b5c470aa36eb7

    • SHA256

      198dba4c9122416c23a07d56b72fce22ea67725d7ad2cbca935f28f9c3e74fec

    • SHA512

      5e666c7cc7a58204ef1ac3f24dafdc31ae6d3df79a409b95f31993c1eb5518d6c9647822b8b795cc3eaf8539596a3f002b5b525c654ab1d25a5aa49f6c903969

    • SSDEEP

      768:67Blpf/FAK65euBT37CPKK0SjHm0CAbLg++PJHJzIWD+dVdCYgck5sIZFufGSY1K:67Zf/FAxTWY1++PJHJXA/OsIZy

    Score
    9/10
    ransomwareupx

    • Renames multiple (3730) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks