Overview

overview

9

Static

static

7

a43f475bb4...cs.exe

windows7-x64

9

a43f475bb4...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a43f475bb4e2124ef957503860f581c0_NeikiAnalytics.exe

  • Size

    109KB

  • Sample

    240524-etndgacg7y

  • MD5

    a43f475bb4e2124ef957503860f581c0

  • SHA1

    0b92bbb4bb6ab49a2d565d20003dff421cf178eb

  • SHA256

    17c9432aa8362cf18c800ab7f3dfe6b9ea7c40d8ea954f8cd9c850e26c386b9a

  • SHA512

    bf6f51ceaeb1a253308d9524eb85fd5fdbf2acc39c454426d7de6f246d0c5435e327dacaab7d1a4f3a12f389d484454c9f1ad158bc229df893eaa473c4c6f7f5

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf5S8:hfAIuZAIuYSMjoqtMHfhf5SskQ

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      a43f475bb4e2124ef957503860f581c0_NeikiAnalytics.exe

    • Size

      109KB

    • MD5

      a43f475bb4e2124ef957503860f581c0

    • SHA1

      0b92bbb4bb6ab49a2d565d20003dff421cf178eb

    • SHA256

      17c9432aa8362cf18c800ab7f3dfe6b9ea7c40d8ea954f8cd9c850e26c386b9a

    • SHA512

      bf6f51ceaeb1a253308d9524eb85fd5fdbf2acc39c454426d7de6f246d0c5435e327dacaab7d1a4f3a12f389d484454c9f1ad158bc229df893eaa473c4c6f7f5

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf5S8:hfAIuZAIuYSMjoqtMHfhf5SskQ

    Score
    9/10
    ransomwareupx

    • Renames multiple (561) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks