General

  • Target

    a4d415695f8834827be4e6275fa11740_NeikiAnalytics.exe

  • Size

    66KB

  • Sample

    240603-qmrm4ahb98

  • MD5

    a4d415695f8834827be4e6275fa11740

  • SHA1

    72af44557a7bd8c23d8ebe332ec77ed601874cdb

  • SHA256

    6206ecb79cbc73be0bc1dcd94c987e40ee07cb25d6c900fdebe10af701e80935

  • SHA512

    05c0db3ef23f73ceb1457ec6ef9050df6e7bdae9bd083e468a5c82d8a4e746c8d4cf453a500acb21d866bf4bb1e7bd205174034a402cdad3781bc171cbcec093

  • SSDEEP

    1536:67Zf/FAxTWY1++PJHJXA/OsIZISWh7SWhA:+nyi/SWh7SWhA

Score
9/10

Malware Config

Targets

    • Target

      a4d415695f8834827be4e6275fa11740_NeikiAnalytics.exe

    • Size

      66KB

    • MD5

      a4d415695f8834827be4e6275fa11740

    • SHA1

      72af44557a7bd8c23d8ebe332ec77ed601874cdb

    • SHA256

      6206ecb79cbc73be0bc1dcd94c987e40ee07cb25d6c900fdebe10af701e80935

    • SHA512

      05c0db3ef23f73ceb1457ec6ef9050df6e7bdae9bd083e468a5c82d8a4e746c8d4cf453a500acb21d866bf4bb1e7bd205174034a402cdad3781bc171cbcec093

    • SSDEEP

      1536:67Zf/FAxTWY1++PJHJXA/OsIZISWh7SWhA:+nyi/SWh7SWhA

    Score
    9/10
    • Renames multiple (912) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks