General

  • Target

    a481ece91f01543f0440fd20ce50ea50_NeikiAnalytics.exe

  • Size

    85KB

  • Sample

    240524-et8dmscg94

  • MD5

    a481ece91f01543f0440fd20ce50ea50

  • SHA1

    71f2d68d4f9955a98e1acf6b3424d3d87be2df86

  • SHA256

    f6c65b2d4ad63fa1f1894a29c581b69178030d519dfb8cb09ce1e98d56d8fe75

  • SHA512

    7af699941edee4264b8e67ea0fd08493d34186fc1d5520afcb22dd9f7767337c035409e2eab503690f111afa89d929fbaf34251ab560fb4b8b735a8101feae22

  • SSDEEP

    1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8yiDC:+nyiQSoiC

Score
9/10

Malware Config

Targets

    • Target

      a481ece91f01543f0440fd20ce50ea50_NeikiAnalytics.exe

    • Size

      85KB

    • MD5

      a481ece91f01543f0440fd20ce50ea50

    • SHA1

      71f2d68d4f9955a98e1acf6b3424d3d87be2df86

    • SHA256

      f6c65b2d4ad63fa1f1894a29c581b69178030d519dfb8cb09ce1e98d56d8fe75

    • SHA512

      7af699941edee4264b8e67ea0fd08493d34186fc1d5520afcb22dd9f7767337c035409e2eab503690f111afa89d929fbaf34251ab560fb4b8b735a8101feae22

    • SSDEEP

      1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8yiDC:+nyiQSoiC

    Score
    9/10
    • Renames multiple (3522) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks