Overview

overview

9

Static

static

7

648e87e674...cs.exe

windows7-x64

9

648e87e674...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    648e87e6744715daaee5fcabfd8d5400_NeikiAnalytics.exe

  • Size

    127KB

  • Sample

    240603-tdrtaacg68

  • MD5

    648e87e6744715daaee5fcabfd8d5400

  • SHA1

    d567ef6c3327a031d527df4ea4b7e429012f699c

  • SHA256

    d778b2f4cb89b27ceae12ce688fd8efa0475b6ddb5d97aedc8e24652d990aa6d

  • SHA512

    b897314a3390745b57b1ff6a7918442f07010f0873ac6e034de03b3e733d0786b28398c894342b4e773f0252f58c7c89fafa6acf28187babdc72828f174310e4

  • SSDEEP

    1536:V7Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCc:fnymCAIuZAIuYSMjoqtMHfhf+G

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      648e87e6744715daaee5fcabfd8d5400_NeikiAnalytics.exe

    • Size

      127KB

    • MD5

      648e87e6744715daaee5fcabfd8d5400

    • SHA1

      d567ef6c3327a031d527df4ea4b7e429012f699c

    • SHA256

      d778b2f4cb89b27ceae12ce688fd8efa0475b6ddb5d97aedc8e24652d990aa6d

    • SHA512

      b897314a3390745b57b1ff6a7918442f07010f0873ac6e034de03b3e733d0786b28398c894342b4e773f0252f58c7c89fafa6acf28187babdc72828f174310e4

    • SSDEEP

      1536:V7Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCc:fnymCAIuZAIuYSMjoqtMHfhf+G

    Score
    9/10
    ransomwareupx

    • Renames multiple (3441) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks