General
-
Target
4e195bc1bb9dceeddef3a8fada590a90_NeikiAnalytics.exe
-
Size
98KB
-
Sample
240529-kxehmahd5v
-
MD5
4e195bc1bb9dceeddef3a8fada590a90
-
SHA1
f7d52862792927eeaadf6e27de41e122f3e916d3
-
SHA256
f16020908cc1228f369543764620cfa5af1fbb8bc3d6b3f89df97798ac444e7a
-
SHA512
fad497fb8ae5da55dd35c50bfc4a1618a2e6792cfd0a55e8333e18730ab71bb7e641ef984e32eb8f0f87750760b253b21c5c9386135768d56fb184cbda5e9400
-
SSDEEP
1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8yiFY+TwH:+nyiQSoL+T4
Behavioral task
behavioral1
Sample
4e195bc1bb9dceeddef3a8fada590a90_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
4e195bc1bb9dceeddef3a8fada590a90_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
4e195bc1bb9dceeddef3a8fada590a90_NeikiAnalytics.exe
-
Size
98KB
-
MD5
4e195bc1bb9dceeddef3a8fada590a90
-
SHA1
f7d52862792927eeaadf6e27de41e122f3e916d3
-
SHA256
f16020908cc1228f369543764620cfa5af1fbb8bc3d6b3f89df97798ac444e7a
-
SHA512
fad497fb8ae5da55dd35c50bfc4a1618a2e6792cfd0a55e8333e18730ab71bb7e641ef984e32eb8f0f87750760b253b21c5c9386135768d56fb184cbda5e9400
-
SSDEEP
1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8yiFY+TwH:+nyiQSoL+T4
Score9/10-
Renames multiple (3438) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-