Overview

overview

9

Static

static

7

41f01e35af...cs.exe

windows7-x64

9

41f01e35af...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    41f01e35afe5f7ea68ef58f5f68d50c0_NeikiAnalytics.exe

  • Size

    217KB

  • Sample

    240522-1gx8sshh33

  • MD5

    41f01e35afe5f7ea68ef58f5f68d50c0

  • SHA1

    c500d41d360e14ae7099ddfa8dd456c78db9f4bf

  • SHA256

    07a1e9d22e31f238ce86947d87850e74cc516bd8b8baffacdd05a8b5286e35ff

  • SHA512

    cb57e3b52c013c16bd2d44d30906da21f85654e7978c7affd8a83b5831d50ddad9b96888d93524c1d34db4a1fefe07d99fd02386cd3b8b2e5118935b5baf9371

  • SSDEEP

    3072:+nymCAIuZAIuYSMjoqtMHfhf9fAIuZAIuYSMjoqtMHfhfA:JmCAIuZAIuDMVtM/LfAIuZAIuDMVtM/W

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      41f01e35afe5f7ea68ef58f5f68d50c0_NeikiAnalytics.exe

    • Size

      217KB

    • MD5

      41f01e35afe5f7ea68ef58f5f68d50c0

    • SHA1

      c500d41d360e14ae7099ddfa8dd456c78db9f4bf

    • SHA256

      07a1e9d22e31f238ce86947d87850e74cc516bd8b8baffacdd05a8b5286e35ff

    • SHA512

      cb57e3b52c013c16bd2d44d30906da21f85654e7978c7affd8a83b5831d50ddad9b96888d93524c1d34db4a1fefe07d99fd02386cd3b8b2e5118935b5baf9371

    • SSDEEP

      3072:+nymCAIuZAIuYSMjoqtMHfhf9fAIuZAIuYSMjoqtMHfhfA:JmCAIuZAIuDMVtM/LfAIuZAIuDMVtM/W

    Score
    9/10
    ransomwareupx

    • Renames multiple (339) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks