Overview

overview

9

Static

static

7

dcf0351da1...cs.exe

windows7-x64

9

dcf0351da1...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    dcf0351da1a8de3b7421b4bbe7b9b520_NeikiAnalytics.exe

  • Size

    217KB

  • Sample

    240523-m5l9jsdh62

  • MD5

    dcf0351da1a8de3b7421b4bbe7b9b520

  • SHA1

    132070008b88fd9ead33f9f5a5c553b49a109fd1

  • SHA256

    fb5e1c4e54259cafb096f911a9ebd3cdafc25b782d3a3e36db2ff40b9890f122

  • SHA512

    b91f666bb53214e3223311db498d5a17c9c75f8dac7abae4e159ff2173753125eec612578020c6dd170f990c323776105a84e7e9d5b0a0bb6a4a03ebe97849c6

  • SSDEEP

    3072:+nymCAIuZAIuYSMjoqtMHfhfwfAIuZAIuYSMjoqtMHfhfb:JmCAIuZAIuDMVtM/WfAIuZAIuDMVtM/h

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      dcf0351da1a8de3b7421b4bbe7b9b520_NeikiAnalytics.exe

    • Size

      217KB

    • MD5

      dcf0351da1a8de3b7421b4bbe7b9b520

    • SHA1

      132070008b88fd9ead33f9f5a5c553b49a109fd1

    • SHA256

      fb5e1c4e54259cafb096f911a9ebd3cdafc25b782d3a3e36db2ff40b9890f122

    • SHA512

      b91f666bb53214e3223311db498d5a17c9c75f8dac7abae4e159ff2173753125eec612578020c6dd170f990c323776105a84e7e9d5b0a0bb6a4a03ebe97849c6

    • SSDEEP

      3072:+nymCAIuZAIuYSMjoqtMHfhfwfAIuZAIuYSMjoqtMHfhfb:JmCAIuZAIuDMVtM/WfAIuZAIuDMVtM/h

    Score
    9/10
    ransomwareupx

    • Renames multiple (2947) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks