General
-
Target
b951537323be8f0a6dcd1496e4abe380_NeikiAnalytics.exe
-
Size
140KB
-
Sample
240524-177j6ada9y
-
MD5
b951537323be8f0a6dcd1496e4abe380
-
SHA1
a8892f78d9e3985a2660d89024ae5c8af4969d99
-
SHA256
907a7eea425a6f47f9daaf4c2b4a6dcfc029cda72c69e4bc2b88c5d8dcd6ad24
-
SHA512
83b1b51f80979c3887b4aa9a3150cc64ca029c4d92bfa1f692a7321c1788e99c559ca1857da9659320cf8358f360da2e773a5e8ebc5e8a54cc9199da7e60e9b9
-
SSDEEP
3072:69WpQEoTdc6e6kvNDck7Tdc6e6kvNDcksh/U49WpQEoTdc6e6kvNDck7Tdc6e6kY:nSTdc6e6kvNDck7Tdc6e6kvNDckyU1S8
Static task
static1
Behavioral task
behavioral1
Sample
b951537323be8f0a6dcd1496e4abe380_NeikiAnalytics.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
b951537323be8f0a6dcd1496e4abe380_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
b951537323be8f0a6dcd1496e4abe380_NeikiAnalytics.exe
-
Size
140KB
-
MD5
b951537323be8f0a6dcd1496e4abe380
-
SHA1
a8892f78d9e3985a2660d89024ae5c8af4969d99
-
SHA256
907a7eea425a6f47f9daaf4c2b4a6dcfc029cda72c69e4bc2b88c5d8dcd6ad24
-
SHA512
83b1b51f80979c3887b4aa9a3150cc64ca029c4d92bfa1f692a7321c1788e99c559ca1857da9659320cf8358f360da2e773a5e8ebc5e8a54cc9199da7e60e9b9
-
SSDEEP
3072:69WpQEoTdc6e6kvNDck7Tdc6e6kvNDcksh/U49WpQEoTdc6e6kvNDck7Tdc6e6kY:nSTdc6e6kvNDck7Tdc6e6kvNDckyU1S8
Score9/10-
Renames multiple (4370) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-