Overview

overview

9

Static

static

7

a6d31eb596...cs.exe

windows7-x64

9

a6d31eb596...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a6d31eb5962b2e7def445f586297c660_NeikiAnalytics.exe

  • Size

    42KB

  • Sample

    240524-e2k83sdb7z

  • MD5

    a6d31eb5962b2e7def445f586297c660

  • SHA1

    4d824cefd38ce3d84fa5642be4548e387cc2b479

  • SHA256

    9255af14979106e2c0c2eecac672b5bb8e6b070e3af780589b5eee275ac8bf4d

  • SHA512

    2822f266c117fca0399ba91ce334a40f177cd8b13df0017f39cc8a01c8b0820a717edd7263ac3b4f9f73ba3bc817173e9b636fcb237d2ffef590cf791c75af28

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFS1:CTWn1++PJHJXA/OsIZfzc3/Q8S4Z4x

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      a6d31eb5962b2e7def445f586297c660_NeikiAnalytics.exe

    • Size

      42KB

    • MD5

      a6d31eb5962b2e7def445f586297c660

    • SHA1

      4d824cefd38ce3d84fa5642be4548e387cc2b479

    • SHA256

      9255af14979106e2c0c2eecac672b5bb8e6b070e3af780589b5eee275ac8bf4d

    • SHA512

      2822f266c117fca0399ba91ce334a40f177cd8b13df0017f39cc8a01c8b0820a717edd7263ac3b4f9f73ba3bc817173e9b636fcb237d2ffef590cf791c75af28

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFS1:CTWn1++PJHJXA/OsIZfzc3/Q8S4Z4x

    Score
    9/10
    ransomwareupx

    • Renames multiple (3789) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks