Overview

overview

9

Static

static

7

6f89d15114...cs.exe

windows7-x64

9

6f89d15114...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6f89d151140c69ef3c3b2fc2a12c4be0_NeikiAnalytics.exe

  • Size

    101KB

  • Sample

    240523-b3kgdshb85

  • MD5

    6f89d151140c69ef3c3b2fc2a12c4be0

  • SHA1

    aadba4131f312d482fcb6c6666e35b00274c012e

  • SHA256

    17d9298ffa8f60105810df7a4d07d40a1359e4d52ad57f525873d5ab55bed48f

  • SHA512

    5656cd1b8884c887029d6efb1577878ff7c22d398a805145439ad9b467e82c4fad2e78b8d0618a6f92822cf5836d734dbaeb159db2186fdf25aa354b66fda22c

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf5SP:hfAIuZAIuYSMjoqtMHfhf5SskD

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      6f89d151140c69ef3c3b2fc2a12c4be0_NeikiAnalytics.exe

    • Size

      101KB

    • MD5

      6f89d151140c69ef3c3b2fc2a12c4be0

    • SHA1

      aadba4131f312d482fcb6c6666e35b00274c012e

    • SHA256

      17d9298ffa8f60105810df7a4d07d40a1359e4d52ad57f525873d5ab55bed48f

    • SHA512

      5656cd1b8884c887029d6efb1577878ff7c22d398a805145439ad9b467e82c4fad2e78b8d0618a6f92822cf5836d734dbaeb159db2186fdf25aa354b66fda22c

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf5SP:hfAIuZAIuYSMjoqtMHfhf5SskD

    Score
    9/10
    ransomwareupx

    • Renames multiple (3440) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks