85615f28897e82ee9bdeb3abb854da82cec48ea369521d73dd5d2ac0d664598d | Triage

Submit
Reports

Overview

overview

9

Static

static

3

90defdaabd...cs.exe

windows7-x64

9

90defdaabd...cs.exe

windows10-2004-x64

9

Sharing

General

Target

90defdaabd102bbffa292ffc3e501020_NeikiAnalytics.exe
Size

631KB
Sample

240523-1lq1aahh53
MD5

90defdaabd102bbffa292ffc3e501020
SHA1

30c6ff16b1bb70d179a101a0ddef16be62b209fc
SHA256

85615f28897e82ee9bdeb3abb854da82cec48ea369521d73dd5d2ac0d664598d
SHA512

b9263c9ca2acec3e016daa4252cbce34c829479f92e1a4a288602f98fbaba1b1b1642b1038122a589b45a0bcaff9924b6ee0c8be770e7b5557f9ca60644430af
SSDEEP

3072:6pWpOjgGwLGK4Uk0Ycoi6DdP51S2XI5cgGlKFTvr5pgx1v9/oLUmP9nV7xi:P47wj4kYcopdPm2ac8+1vVmPHA

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

90defdaabd102bbffa292ffc3e501020_NeikiAnalytics.exe

Resource

win7-20240215-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

90defdaabd102bbffa292ffc3e501020_NeikiAnalytics.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  90defdaabd102bbffa292ffc3e501020_NeikiAnalytics.exe
- Size
  
  631KB
- MD5
  
  90defdaabd102bbffa292ffc3e501020
- SHA1
  
  30c6ff16b1bb70d179a101a0ddef16be62b209fc
- SHA256
  
  85615f28897e82ee9bdeb3abb854da82cec48ea369521d73dd5d2ac0d664598d
- SHA512
  
  b9263c9ca2acec3e016daa4252cbce34c829479f92e1a4a288602f98fbaba1b1b1642b1038122a589b45a0bcaff9924b6ee0c8be770e7b5557f9ca60644430af
- SSDEEP
  
  3072:6pWpOjgGwLGK4Uk0Ycoi6DdP51S2XI5cgGlKFTvr5pgx1v9/oLUmP9nV7xi:P47wj4kYcopdPm2ac8+1vVmPHA
Score

9^/10

ransomware
- Renames multiple (3678) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy