General

  • Target

    3f262e9bcc2a665b4d883fe16424bc20_NeikiAnalytics.exe

  • Size

    182KB

  • Sample

    240602-f5qteada38

  • MD5

    3f262e9bcc2a665b4d883fe16424bc20

  • SHA1

    aeff55d7813d4f17d931ddcb5ad6d6fc3fadbd8b

  • SHA256

    834a46ab25f14f972b01fd1be6c5e2febc6f149ad1863db8c71ba5e5864dc820

  • SHA512

    61d935f0186f04678514f5f3370e4dd96b979a31e4903ac75d364ecfbd61465d5d4953fa56f24774545346b1ec155a8cbf3b16247c50ad3405465127ae14e727

  • SSDEEP

    3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZWaa1aar8te7WpMaxeb0CYJ97lEYNR73e+eKk:RqKvb0CYJ973e+eKZWaa1aar8IqKvb0C

Score
9/10

Malware Config

Targets

    • Target

      3f262e9bcc2a665b4d883fe16424bc20_NeikiAnalytics.exe

    • Size

      182KB

    • MD5

      3f262e9bcc2a665b4d883fe16424bc20

    • SHA1

      aeff55d7813d4f17d931ddcb5ad6d6fc3fadbd8b

    • SHA256

      834a46ab25f14f972b01fd1be6c5e2febc6f149ad1863db8c71ba5e5864dc820

    • SHA512

      61d935f0186f04678514f5f3370e4dd96b979a31e4903ac75d364ecfbd61465d5d4953fa56f24774545346b1ec155a8cbf3b16247c50ad3405465127ae14e727

    • SSDEEP

      3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZWaa1aar8te7WpMaxeb0CYJ97lEYNR73e+eKk:RqKvb0CYJ973e+eKZWaa1aar8IqKvb0C

    Score
    9/10
    • Renames multiple (4469) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks