Overview

overview

9

Static

static

7

6fcdf5b556...cs.exe

windows7-x64

9

6fcdf5b556...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6fcdf5b5566ecd59a02ccf9aa5668e60_NeikiAnalytics.exe

  • Size

    165KB

  • Sample

    240523-b4l2lshc45

  • MD5

    6fcdf5b5566ecd59a02ccf9aa5668e60

  • SHA1

    c1e8d803b091757c34ca561867c63cb158a18fc0

  • SHA256

    3de00c6063b520ae1ac9c91fd22734a1e3361c1006f08c18d03b32eddc69ae6d

  • SHA512

    b6474b543c412594e11bfc933cbb4836e4abbed5b7d6af557def246d699a705fa0758289053ef9d60e36738961ae4c23e455b123d5d21662776633d47b3a08ad

  • SSDEEP

    3072:KQSo1EZGtKgZGtK/PgtU1wAIuZAIuXwFwtdG:KQSo1EZGtKgZGtK/CAIuZAIuW

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      6fcdf5b5566ecd59a02ccf9aa5668e60_NeikiAnalytics.exe

    • Size

      165KB

    • MD5

      6fcdf5b5566ecd59a02ccf9aa5668e60

    • SHA1

      c1e8d803b091757c34ca561867c63cb158a18fc0

    • SHA256

      3de00c6063b520ae1ac9c91fd22734a1e3361c1006f08c18d03b32eddc69ae6d

    • SHA512

      b6474b543c412594e11bfc933cbb4836e4abbed5b7d6af557def246d699a705fa0758289053ef9d60e36738961ae4c23e455b123d5d21662776633d47b3a08ad

    • SSDEEP

      3072:KQSo1EZGtKgZGtK/PgtU1wAIuZAIuXwFwtdG:KQSo1EZGtKgZGtK/CAIuZAIuW

    Score
    9/10
    ransomwareupx

    • Renames multiple (3087) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks