General
-
Target
bd86127ff029b83af2a83b8a875762f0_NeikiAnalytics.exe
-
Size
174KB
-
Sample
240523-j4earsad8z
-
MD5
bd86127ff029b83af2a83b8a875762f0
-
SHA1
4b7a6dbde4e021435c832e0b53b4f29495e87eea
-
SHA256
9be41db029b9016e3c29ee0e098503173b0c335c9d125c9e73dae30293335605
-
SHA512
4fdc1a00497a4f4aedc6cecb3d3e802f0e39bfdf5cb5eda2415cc530e1a3c795d50637c280deb62b18c5c4dac93c215e51ac31c3c35e35862176f4cf3eb77268
-
SSDEEP
3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBw:PqFF2Ie+e1UqFF2Ie+e1e
Static task
static1
Behavioral task
behavioral1
Sample
bd86127ff029b83af2a83b8a875762f0_NeikiAnalytics.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
bd86127ff029b83af2a83b8a875762f0_NeikiAnalytics.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
bd86127ff029b83af2a83b8a875762f0_NeikiAnalytics.exe
-
Size
174KB
-
MD5
bd86127ff029b83af2a83b8a875762f0
-
SHA1
4b7a6dbde4e021435c832e0b53b4f29495e87eea
-
SHA256
9be41db029b9016e3c29ee0e098503173b0c335c9d125c9e73dae30293335605
-
SHA512
4fdc1a00497a4f4aedc6cecb3d3e802f0e39bfdf5cb5eda2415cc530e1a3c795d50637c280deb62b18c5c4dac93c215e51ac31c3c35e35862176f4cf3eb77268
-
SSDEEP
3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBw:PqFF2Ie+e1UqFF2Ie+e1e
Score9/10-
Renames multiple (5564) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-