General
-
Target
d84b62f758a41d8ba1da8807659de370_NeikiAnalytics.exe
-
Size
173KB
-
Sample
240523-n1tcqsfd53
-
MD5
d84b62f758a41d8ba1da8807659de370
-
SHA1
a7b1d7df4440b5d5400cdd96004e09c5bd08f4bf
-
SHA256
1144b0a2705bd15b65fa978ed7e588e840dffdad6518fe5eeefb5b3a0391ecf0
-
SHA512
728be3f8e3f888426503abb425e5143eb2710063e34d8a5964453334adb3b91fa0f0a0a36e75d336e1d297599e91fb51ab5291e10ef1d51d52e3c62b6211bd2b
-
SSDEEP
3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZ0VXaUe7WpMaxeb0CYJ97lEYNR73e+eKZ0VX5:RqKvb0CYJ973e+eKZ0VYqKvb0CYJ973Q
Static task
static1
Behavioral task
behavioral1
Sample
d84b62f758a41d8ba1da8807659de370_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
d84b62f758a41d8ba1da8807659de370_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
d84b62f758a41d8ba1da8807659de370_NeikiAnalytics.exe
-
Size
173KB
-
MD5
d84b62f758a41d8ba1da8807659de370
-
SHA1
a7b1d7df4440b5d5400cdd96004e09c5bd08f4bf
-
SHA256
1144b0a2705bd15b65fa978ed7e588e840dffdad6518fe5eeefb5b3a0391ecf0
-
SHA512
728be3f8e3f888426503abb425e5143eb2710063e34d8a5964453334adb3b91fa0f0a0a36e75d336e1d297599e91fb51ab5291e10ef1d51d52e3c62b6211bd2b
-
SSDEEP
3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZ0VXaUe7WpMaxeb0CYJ97lEYNR73e+eKZ0VX5:RqKvb0CYJ973e+eKZ0VYqKvb0CYJ973Q
Score9/10-
Renames multiple (5433) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-