Overview

overview

9

Static

static

7

8a6c3fe3f0...cs.exe

windows7-x64

9

8a6c3fe3f0...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    8a6c3fe3f0f36bf9cc83bdd03cd5c530_NeikiAnalytics.exe

  • Size

    64KB

  • Sample

    240601-c7mb8afh43

  • MD5

    8a6c3fe3f0f36bf9cc83bdd03cd5c530

  • SHA1

    4a7e643fbe7b8e5f538d94dabb209b6f1064b876

  • SHA256

    95fc28f3f7ae46639bf4e8ac47e8b5c12f8cf5419579d4c64351de93438f0c78

  • SHA512

    066e8ce1983d6a525060388029dbf7298bf96b18de6e6c254c000fdb35124c5d3be991101f6a8c2ad522d0fc2bf66513951bbf0e8a526e2b68b9e6da0d04afb4

  • SSDEEP

    1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8i:+nyiQSoV

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      8a6c3fe3f0f36bf9cc83bdd03cd5c530_NeikiAnalytics.exe

    • Size

      64KB

    • MD5

      8a6c3fe3f0f36bf9cc83bdd03cd5c530

    • SHA1

      4a7e643fbe7b8e5f538d94dabb209b6f1064b876

    • SHA256

      95fc28f3f7ae46639bf4e8ac47e8b5c12f8cf5419579d4c64351de93438f0c78

    • SHA512

      066e8ce1983d6a525060388029dbf7298bf96b18de6e6c254c000fdb35124c5d3be991101f6a8c2ad522d0fc2bf66513951bbf0e8a526e2b68b9e6da0d04afb4

    • SSDEEP

      1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8i:+nyiQSoV

    Score
    9/10
    ransomwareupx

    • Renames multiple (3692) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks