4a392e0a9a6765813ed1c3dea340807a23d8ff1f3d7f884fcea6221417a2520e | Triage

Sharing

General

Target

6f91af37f364925c7650377caa795a30_NeikiAnalytics.exe
Size

493KB
Sample

240523-b3mazshb89
MD5

6f91af37f364925c7650377caa795a30
SHA1

9565d87852a641a121b8cf721b6d896c18782c3d
SHA256

4a392e0a9a6765813ed1c3dea340807a23d8ff1f3d7f884fcea6221417a2520e
SHA512

e63428c0e55fd4b1844f35dfef8a6da4473b4ab10c9b04b48755552eb48ca175df037016a45c0c273da354397216f59d3499e991ff02b0e9cf4118037c0fb995
SSDEEP

6144:iJuXtXxog5E+FWPNfrf6yGEssQxNpbMtjq:+8XNE+FuNfrSyGEssQJG

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  6f91af37f364925c7650377caa795a30_NeikiAnalytics.exe
- Size
  
  493KB
- MD5
  
  6f91af37f364925c7650377caa795a30
- SHA1
  
  9565d87852a641a121b8cf721b6d896c18782c3d
- SHA256
  
  4a392e0a9a6765813ed1c3dea340807a23d8ff1f3d7f884fcea6221417a2520e
- SHA512
  
  e63428c0e55fd4b1844f35dfef8a6da4473b4ab10c9b04b48755552eb48ca175df037016a45c0c273da354397216f59d3499e991ff02b0e9cf4118037c0fb995
- SSDEEP
  
  6144:iJuXtXxog5E+FWPNfrf6yGEssQxNpbMtjq:+8XNE+FuNfrSyGEssQJG
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Defacement

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2