Overview

overview

9

Static

static

7

92799aa251...cs.exe

windows7-x64

9

92799aa251...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    92799aa25166670940a2221d5e0d0200_NeikiAnalytics.exe

  • Size

    69KB

  • Sample

    240523-h29s8ahb9s

  • MD5

    92799aa25166670940a2221d5e0d0200

  • SHA1

    cad5aa19ca966318540632f8c7eb8de6f033ee4d

  • SHA256

    ebc3cadcbb91e433f16bf0821f4ad90586aa5e1232fa9198be3f3655e8cb8b4d

  • SHA512

    a390063eba250a4929301c04989843515a1b6f2770178035b237ed69dd64db249059495ff6dce36aa65928c2af11ceb2084f20140060b728cf18735ab79dd707

  • SSDEEP

    1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/QX8/8tpQ:+nyiQSoMktpQ

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      92799aa25166670940a2221d5e0d0200_NeikiAnalytics.exe

    • Size

      69KB

    • MD5

      92799aa25166670940a2221d5e0d0200

    • SHA1

      cad5aa19ca966318540632f8c7eb8de6f033ee4d

    • SHA256

      ebc3cadcbb91e433f16bf0821f4ad90586aa5e1232fa9198be3f3655e8cb8b4d

    • SHA512

      a390063eba250a4929301c04989843515a1b6f2770178035b237ed69dd64db249059495ff6dce36aa65928c2af11ceb2084f20140060b728cf18735ab79dd707

    • SSDEEP

      1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/QX8/8tpQ:+nyiQSoMktpQ

    Score
    9/10
    ransomwareupx

    • Renames multiple (3683) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks