Overview

overview

9

Static

static

3

15b72be5a9...cs.exe

windows7-x64

9

15b72be5a9...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    15b72be5a9b7ea4895515660f5c61970_NeikiAnalytics.exe

  • Size

    117KB

  • Sample

    240522-d91hasba9s

  • MD5

    15b72be5a9b7ea4895515660f5c61970

  • SHA1

    84acb849ac8d3c3e37082f38aadfdde2bd5f121b

  • SHA256

    f8817b717e5abc20bb5df4d694ec10c6f7fecdb434bce2f3e233127658170b5c

  • SHA512

    68dc8e3d0bebe30aea84c17692d05c00e84658b506726fa1bddf43deddc12d44bb1d77324491edefe7c0cc92565613f6f515b74c850f72f69acdc1ebf9ab3bed

  • SSDEEP

    3072:6rWpcOPxPke+e3fFpsJOfFpsJbgEIixihyKoIWbsHfySkT5GeCyi348oWGRPOzkA:tFPxPke+eI6

Score
9/10
ransomware

Malware Config

Targets

    • Target

      15b72be5a9b7ea4895515660f5c61970_NeikiAnalytics.exe

    • Size

      117KB

    • MD5

      15b72be5a9b7ea4895515660f5c61970

    • SHA1

      84acb849ac8d3c3e37082f38aadfdde2bd5f121b

    • SHA256

      f8817b717e5abc20bb5df4d694ec10c6f7fecdb434bce2f3e233127658170b5c

    • SHA512

      68dc8e3d0bebe30aea84c17692d05c00e84658b506726fa1bddf43deddc12d44bb1d77324491edefe7c0cc92565613f6f515b74c850f72f69acdc1ebf9ab3bed

    • SSDEEP

      3072:6rWpcOPxPke+e3fFpsJOfFpsJbgEIixihyKoIWbsHfySkT5GeCyi348oWGRPOzkA:tFPxPke+eI6

    Score
    9/10
    ransomware

    • Renames multiple (3441) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks