adb1ca3c3ea9c5b398b5e98c2496cfd80a9ebb44295a48bc5edfed10e0d43693 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

4908cc86f2...cs.exe

windows7-x64

9

4908cc86f2...cs.exe

windows10-2004-x64

9

Sharing

General

Target

4908cc86f2e5897f7d07677e85718980_NeikiAnalytics.exe
Size

74KB
Sample

240524-r4f4cshh45
MD5

4908cc86f2e5897f7d07677e85718980
SHA1

1317961d4582479135f275a715de4027881b7f3d
SHA256

adb1ca3c3ea9c5b398b5e98c2496cfd80a9ebb44295a48bc5edfed10e0d43693
SHA512

fa60e2fe04ed70205bd49e2cc4c6b26a9b157a0f3ee212cb21b69267141c2b686b511485b6bf9ef168b58d0b2972f11c8c777c0f150eb50c1bdb267d0d94c112
SSDEEP

1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8yiY:+nyiQSoJ

Score

9^/10

ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

4908cc86f2e5897f7d07677e85718980_NeikiAnalytics.exe

Resource

win7-20240221-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

4908cc86f2e5897f7d07677e85718980_NeikiAnalytics.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  4908cc86f2e5897f7d07677e85718980_NeikiAnalytics.exe
- Size
  
  74KB
- MD5
  
  4908cc86f2e5897f7d07677e85718980
- SHA1
  
  1317961d4582479135f275a715de4027881b7f3d
- SHA256
  
  adb1ca3c3ea9c5b398b5e98c2496cfd80a9ebb44295a48bc5edfed10e0d43693
- SHA512
  
  fa60e2fe04ed70205bd49e2cc4c6b26a9b157a0f3ee212cb21b69267141c2b686b511485b6bf9ef168b58d0b2972f11c8c777c0f150eb50c1bdb267d0d94c112
- SSDEEP
  
  1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8yiY:+nyiQSoJ
Score

9^/10

ransomware upx
- Renames multiple (607) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy