2ebef38384d20df9ec34d52eded01baff2abde2557171e365f5d4109c041cfa8 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

b635585c73...cs.exe

windows7-x64

9

b635585c73...cs.exe

windows10-2004-x64

9

Sharing

General

Target

b635585c73a921f2dd540381fc6a57e0_NeikiAnalytics.exe
Size

160KB
Sample

240520-fxh4ladg8w
MD5

b635585c73a921f2dd540381fc6a57e0
SHA1

b644c60ff3019f5d6219323f27adaf0140ab529f
SHA256

2ebef38384d20df9ec34d52eded01baff2abde2557171e365f5d4109c041cfa8
SHA512

673c46018df300eebbd6958ebd58e1f603dbd5dfa256343c6a9666fb5ae0d8ceb629f2d70622556e2788d37784a04eb1e4ed4712579be9962925dd113944509c
SSDEEP

1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKZJHJ/viE7Z9pApQESOHepOHe8G+64:69WpQE0zU9WpQE0zq

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b635585c73a921f2dd540381fc6a57e0_NeikiAnalytics.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

b635585c73a921f2dd540381fc6a57e0_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  b635585c73a921f2dd540381fc6a57e0_NeikiAnalytics.exe
- Size
  
  160KB
- MD5
  
  b635585c73a921f2dd540381fc6a57e0
- SHA1
  
  b644c60ff3019f5d6219323f27adaf0140ab529f
- SHA256
  
  2ebef38384d20df9ec34d52eded01baff2abde2557171e365f5d4109c041cfa8
- SHA512
  
  673c46018df300eebbd6958ebd58e1f603dbd5dfa256343c6a9666fb5ae0d8ceb629f2d70622556e2788d37784a04eb1e4ed4712579be9962925dd113944509c
- SSDEEP
  
  1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKZJHJ/viE7Z9pApQESOHepOHe8G+64:69WpQE0zU9WpQE0zq
Score

9^/10

ransomware
- Renames multiple (3872) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy