c40c8447d08d4451dd4a2ce916d4608902b34e34d9cb2726d8d18feb1b1bc147 | Triage

Sharing

General

Target

68743b9c1f6e5be66dcd376dd653f7c0_NeikiAnalytics.exe
Size

276KB
Sample

240523-bepq7sga29
MD5

68743b9c1f6e5be66dcd376dd653f7c0
SHA1

acfde340f0b9ffebd2876c266d2304288101e68c
SHA256

c40c8447d08d4451dd4a2ce916d4608902b34e34d9cb2726d8d18feb1b1bc147
SHA512

ee125281e3465b5923a919b688c59dd88516cdccf932a0a3335b4782a8faadf1eb959156d09c0311e6c383d4599fa18ee1e65d0d4d836a7bfc51a9212edeb276
SSDEEP

3072:XZUWlN3tGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBbw+LO:pFAlKgzelZNQSBQGH/CSpWqT9wSO

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  68743b9c1f6e5be66dcd376dd653f7c0_NeikiAnalytics.exe
- Size
  
  276KB
- MD5
  
  68743b9c1f6e5be66dcd376dd653f7c0
- SHA1
  
  acfde340f0b9ffebd2876c266d2304288101e68c
- SHA256
  
  c40c8447d08d4451dd4a2ce916d4608902b34e34d9cb2726d8d18feb1b1bc147
- SHA512
  
  ee125281e3465b5923a919b688c59dd88516cdccf932a0a3335b4782a8faadf1eb959156d09c0311e6c383d4599fa18ee1e65d0d4d836a7bfc51a9212edeb276
- SSDEEP
  
  3072:XZUWlN3tGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBbw+LO:pFAlKgzelZNQSBQGH/CSpWqT9wSO
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2