Overview

overview

9

Static

static

7

626b91fd20...cs.exe

windows7-x64

9

626b91fd20...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    626b91fd2086bb53ef50c066cb4f1f10_NeikiAnalytics.exe

  • Size

    104KB

  • Sample

    240523-aty3raeg7z

  • MD5

    626b91fd2086bb53ef50c066cb4f1f10

  • SHA1

    39bf2388dfd73fd5d1a92b5c390fe69ccc809a19

  • SHA256

    646a6b5b4a54a64226e575f20cc43740f13fb32211e8aa01418324af273a20f2

  • SHA512

    eecc477d072980c9dcda7e5cddd8a2fea8f1dca805afbe64bb39798d89cd5cab350e50936a9af7e89e14e3b406f07df9d4e4c08622bbc701f8356027ea16f421

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf0xF:hfAIuZAIuYSMjoqtMHfhfM

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      626b91fd2086bb53ef50c066cb4f1f10_NeikiAnalytics.exe

    • Size

      104KB

    • MD5

      626b91fd2086bb53ef50c066cb4f1f10

    • SHA1

      39bf2388dfd73fd5d1a92b5c390fe69ccc809a19

    • SHA256

      646a6b5b4a54a64226e575f20cc43740f13fb32211e8aa01418324af273a20f2

    • SHA512

      eecc477d072980c9dcda7e5cddd8a2fea8f1dca805afbe64bb39798d89cd5cab350e50936a9af7e89e14e3b406f07df9d4e4c08622bbc701f8356027ea16f421

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf0xF:hfAIuZAIuYSMjoqtMHfhfM

    Score
    9/10
    ransomwareupx

    • Renames multiple (3427) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks