Overview

overview

9

Static

static

7

9b2d16d907...cs.exe

windows7-x64

9

9b2d16d907...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    9b2d16d907e5af463f99a6ea8730a490_NeikiAnalytics.exe

  • Size

    47KB

  • Sample

    240530-k5ajmsdf79

  • MD5

    9b2d16d907e5af463f99a6ea8730a490

  • SHA1

    89e7904902a2a0236bf0f822d6759e5d0026094d

  • SHA256

    d75795a94a811a4a6195acaf92d6b294e59edc1a1f7efd2f5741f388fb47d91b

  • SHA512

    080e413595cd325d4f19a1b2ba1e945154e9fc71b4ba6ec6f638967a6a19a12f20e825bcdbadd2ba610f5a0d4b0c9130d0a63b95208187504639ed34a00fe68c

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFaD:CTWn1++PJHJXA/OsIZfzc3/Q8asUsxe3

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      9b2d16d907e5af463f99a6ea8730a490_NeikiAnalytics.exe

    • Size

      47KB

    • MD5

      9b2d16d907e5af463f99a6ea8730a490

    • SHA1

      89e7904902a2a0236bf0f822d6759e5d0026094d

    • SHA256

      d75795a94a811a4a6195acaf92d6b294e59edc1a1f7efd2f5741f388fb47d91b

    • SHA512

      080e413595cd325d4f19a1b2ba1e945154e9fc71b4ba6ec6f638967a6a19a12f20e825bcdbadd2ba610f5a0d4b0c9130d0a63b95208187504639ed34a00fe68c

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFaD:CTWn1++PJHJXA/OsIZfzc3/Q8asUsxe3

    Score
    9/10
    ransomwareupx

    • Renames multiple (3773) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks