Overview

overview

9

Static

static

3

0ddefb8b72...cs.exe

windows7-x64

9

0ddefb8b72...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0ddefb8b72b325f5f51e7714beb8b590_NeikiAnalytics.exe

  • Size

    80KB

  • Sample

    240521-zqlqpaab78

  • MD5

    0ddefb8b72b325f5f51e7714beb8b590

  • SHA1

    0b29fbdaba346e0b4bae7e1c1d3b9bcee3b6096d

  • SHA256

    553b33af47e74c7e01a0307bc03e46115439a27783998a1ddd7d0d50dab2d90b

  • SHA512

    6fa12cd8881180104ab6f0b696b6af50a981ac1f0d07546576641615fd9a56ddcb7b335cbeea8e7f110dd7d08574ea99e8e050dafb30f2aa5f73ea1103789a10

  • SSDEEP

    1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhs:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsx

Score
9/10
ransomware

Malware Config

Targets

    • Target

      0ddefb8b72b325f5f51e7714beb8b590_NeikiAnalytics.exe

    • Size

      80KB

    • MD5

      0ddefb8b72b325f5f51e7714beb8b590

    • SHA1

      0b29fbdaba346e0b4bae7e1c1d3b9bcee3b6096d

    • SHA256

      553b33af47e74c7e01a0307bc03e46115439a27783998a1ddd7d0d50dab2d90b

    • SHA512

      6fa12cd8881180104ab6f0b696b6af50a981ac1f0d07546576641615fd9a56ddcb7b335cbeea8e7f110dd7d08574ea99e8e050dafb30f2aa5f73ea1103789a10

    • SSDEEP

      1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhs:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsx

    Score
    9/10
    ransomware

    • Renames multiple (677) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks