Overview

overview

9

Static

static

3

0d2cb5394e...cs.exe

windows7-x64

9

0d2cb5394e...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0d2cb5394eb6550bce994aa8f26c0131c8d30346abb8596b701a963138b7543f_NeikiAnalytics

  • Size

    84KB

  • Sample

    240521-gxe8daaf8x

  • MD5

    74a7c4d82b2fc97ccf3e7adfb4832fe0

  • SHA1

    4001e20ddb53ee1e5c0e0f00f48ccd79952d0f94

  • SHA256

    0d2cb5394eb6550bce994aa8f26c0131c8d30346abb8596b701a963138b7543f

  • SHA512

    f4461db2a57e0d42a21d5bd2dc36301c787a3354955d364d9446298a68212a0be10a90c9e7438d9311244e9d0124d42af6857341d892e4513416a7ca0ff5208d

  • SSDEEP

    1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEho:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsV

Score
9/10
ransomware

Malware Config

Targets

    • Target

      0d2cb5394eb6550bce994aa8f26c0131c8d30346abb8596b701a963138b7543f_NeikiAnalytics

    • Size

      84KB

    • MD5

      74a7c4d82b2fc97ccf3e7adfb4832fe0

    • SHA1

      4001e20ddb53ee1e5c0e0f00f48ccd79952d0f94

    • SHA256

      0d2cb5394eb6550bce994aa8f26c0131c8d30346abb8596b701a963138b7543f

    • SHA512

      f4461db2a57e0d42a21d5bd2dc36301c787a3354955d364d9446298a68212a0be10a90c9e7438d9311244e9d0124d42af6857341d892e4513416a7ca0ff5208d

    • SSDEEP

      1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEho:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsV

    Score
    9/10
    ransomware

    • Renames multiple (3436) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks