Overview

overview

9

Static

static

7

7cddd17915...cs.exe

windows7-x64

9

7cddd17915...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    7cddd17915e206b37f4aef603fd1acd0_NeikiAnalytics.exe

  • Size

    64KB

  • Sample

    240531-jb8znsbc3t

  • MD5

    7cddd17915e206b37f4aef603fd1acd0

  • SHA1

    81fc3184b22b4c836dde26209e3bfcf2b28ebdf4

  • SHA256

    e6683fb04597bd4ce80a7ebac2370b797de5ddfa6e2eeff8db8a64090ed38c13

  • SHA512

    1844104554c7c3a4787827f85a11d9613d923e01be40f328a526228240641b4dd901c847a9fa23775b922721c9f069a0739bfeb7a2494bd191e3d6d50ef2b01f

  • SSDEEP

    1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8rh7:+nyiQSoa

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      7cddd17915e206b37f4aef603fd1acd0_NeikiAnalytics.exe

    • Size

      64KB

    • MD5

      7cddd17915e206b37f4aef603fd1acd0

    • SHA1

      81fc3184b22b4c836dde26209e3bfcf2b28ebdf4

    • SHA256

      e6683fb04597bd4ce80a7ebac2370b797de5ddfa6e2eeff8db8a64090ed38c13

    • SHA512

      1844104554c7c3a4787827f85a11d9613d923e01be40f328a526228240641b4dd901c847a9fa23775b922721c9f069a0739bfeb7a2494bd191e3d6d50ef2b01f

    • SSDEEP

      1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8rh7:+nyiQSoa

    Score
    9/10
    ransomwareupx

    • Renames multiple (3674) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks