Overview

overview

9

Static

static

7

cf516a2111...cs.exe

windows7-x64

9

cf516a2111...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cf516a2111452f1c74bed188b3ea1400_NeikiAnalytics.exe

  • Size

    40KB

  • Sample

    240525-ppn5babb5v

  • MD5

    cf516a2111452f1c74bed188b3ea1400

  • SHA1

    1ba8ed072a32520960af81976917a04e1c67c7ba

  • SHA256

    fdf72e24d60bfafd2de1f0094974e5c01553f7dd2935004238b3ca838204c9b5

  • SHA512

    75f877e10ff853aac4ace33ba18cadbd66d87aa1d203b739d2715120c45a9bb51ee970aa9187bceb21e64cf554e5a56ae7993034a4a79348a98b52dd2d047468

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFH:CTWn1++PJHJXA/OsIZfzc3/Q8H

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      cf516a2111452f1c74bed188b3ea1400_NeikiAnalytics.exe

    • Size

      40KB

    • MD5

      cf516a2111452f1c74bed188b3ea1400

    • SHA1

      1ba8ed072a32520960af81976917a04e1c67c7ba

    • SHA256

      fdf72e24d60bfafd2de1f0094974e5c01553f7dd2935004238b3ca838204c9b5

    • SHA512

      75f877e10ff853aac4ace33ba18cadbd66d87aa1d203b739d2715120c45a9bb51ee970aa9187bceb21e64cf554e5a56ae7993034a4a79348a98b52dd2d047468

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFH:CTWn1++PJHJXA/OsIZfzc3/Q8H

    Score
    9/10
    ransomwareupx

    • Renames multiple (3729) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks