8e5d5877d745743390e29d2f7059a021be00e66a08e540db4006c1465d9d4a63 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

396d3509ed...cs.exe

windows7-x64

9

396d3509ed...cs.exe

windows10-2004-x64

9

Sharing

General

Target

396d3509ede3a9070a0a2a8928f29230_NeikiAnalytics.exe
Size

72KB
Sample

240524-vgr4wsda98
MD5

396d3509ede3a9070a0a2a8928f29230
SHA1

3b668ce88c0962d779bed6b344202a6cc7203c00
SHA256

8e5d5877d745743390e29d2f7059a021be00e66a08e540db4006c1465d9d4a63
SHA512

9dbc551461617193d41052ef91e2e1bad195e4e81aaadceb1736d4614d2082e1b6ca124691fb37d8cf49016e1bb386c8da7dc5872b039bb55f762b8b0e3511bf
SSDEEP

1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8xJJMJJ5Jb1JbO:+nyiQSo0

Score

9^/10

ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

396d3509ede3a9070a0a2a8928f29230_NeikiAnalytics.exe

Resource

win7-20240221-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

396d3509ede3a9070a0a2a8928f29230_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  396d3509ede3a9070a0a2a8928f29230_NeikiAnalytics.exe
- Size
  
  72KB
- MD5
  
  396d3509ede3a9070a0a2a8928f29230
- SHA1
  
  3b668ce88c0962d779bed6b344202a6cc7203c00
- SHA256
  
  8e5d5877d745743390e29d2f7059a021be00e66a08e540db4006c1465d9d4a63
- SHA512
  
  9dbc551461617193d41052ef91e2e1bad195e4e81aaadceb1736d4614d2082e1b6ca124691fb37d8cf49016e1bb386c8da7dc5872b039bb55f762b8b0e3511bf
- SSDEEP
  
  1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8xJJMJJ5Jb1JbO:+nyiQSo0
Score

9^/10

ransomware upx
- Renames multiple (3492) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy