General

  • Target

    a43a82f14a064ab9dab2480692348e70_NeikiAnalytics.exe

  • Size

    178KB

  • Sample

    240603-p7e95agf47

  • MD5

    a43a82f14a064ab9dab2480692348e70

  • SHA1

    bff303f20aaa267d2014da5e17b86e9094bcc8b8

  • SHA256

    a6da16d7b10d4dcbe78622340b5568be99e97bf1fc91e08f9d636ea57f174159

  • SHA512

    5ab1765b729cdc61e99f0a2103fd1b7ee9f9e1634abdfa27982b1564282a6c1ab05ff0cffe1551d8084cde7547bebf3cbf666570ed9b5791e44b95f692ca41d7

  • SSDEEP

    3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZAe7WpMaxeb0CYJ97lEYNR73e+eKZe:RqKvb0CYJ973e+eKZjqKvb0CYJ973e+g

Score
9/10

Malware Config

Targets

    • Target

      a43a82f14a064ab9dab2480692348e70_NeikiAnalytics.exe

    • Size

      178KB

    • MD5

      a43a82f14a064ab9dab2480692348e70

    • SHA1

      bff303f20aaa267d2014da5e17b86e9094bcc8b8

    • SHA256

      a6da16d7b10d4dcbe78622340b5568be99e97bf1fc91e08f9d636ea57f174159

    • SHA512

      5ab1765b729cdc61e99f0a2103fd1b7ee9f9e1634abdfa27982b1564282a6c1ab05ff0cffe1551d8084cde7547bebf3cbf666570ed9b5791e44b95f692ca41d7

    • SSDEEP

      3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZAe7WpMaxeb0CYJ97lEYNR73e+eKZe:RqKvb0CYJ973e+eKZjqKvb0CYJ973e+g

    Score
    9/10
    • Renames multiple (4079) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks