Overview

overview

9

Static

static

7

eb28e52988...cs.exe

windows7-x64

9

eb28e52988...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    eb28e529883fc84d52671becc7a42c10_NeikiAnalytics.exe

  • Size

    107KB

  • Sample

    240529-ws9zhscg6v

  • MD5

    eb28e529883fc84d52671becc7a42c10

  • SHA1

    716b95bf984f02c5b1708c6bb6d0ba2553fffb50

  • SHA256

    9763209dff0680965c4ef61db244c3f9ab99e17261f9196a8b7fcb812b91cd45

  • SHA512

    85003ad18d24c64ea6c559507585e394c60d6027419d1774f24edf6c267781023841fb06409b4736e5ebcad96329ac37b9fd87ef0576eba985921ffc26a413fa

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8Q8/8uTWn1++PJHJXA/OsIZfzc3/Q85:fnyiQSoskuQSoS

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      eb28e529883fc84d52671becc7a42c10_NeikiAnalytics.exe

    • Size

      107KB

    • MD5

      eb28e529883fc84d52671becc7a42c10

    • SHA1

      716b95bf984f02c5b1708c6bb6d0ba2553fffb50

    • SHA256

      9763209dff0680965c4ef61db244c3f9ab99e17261f9196a8b7fcb812b91cd45

    • SHA512

      85003ad18d24c64ea6c559507585e394c60d6027419d1774f24edf6c267781023841fb06409b4736e5ebcad96329ac37b9fd87ef0576eba985921ffc26a413fa

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8Q8/8uTWn1++PJHJXA/OsIZfzc3/Q85:fnyiQSoskuQSoS

    Score
    9/10
    ransomwareupx

    • Renames multiple (3309) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks