Overview

overview

9

Static

static

7

235a96bb51...cs.exe

windows7-x64

9

235a96bb51...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    235a96bb51acefab4622ba3eac37eb80_NeikiAnalytics.exe

  • Size

    191KB

  • Sample

    240605-bgcjnaad23

  • MD5

    235a96bb51acefab4622ba3eac37eb80

  • SHA1

    7b6d4e180c82bea3f2856750b33c1ca02af209a8

  • SHA256

    4b3fa85b2e72155c2d09d66f57ea6b3463c36a842e5ac075815c2bb3de248613

  • SHA512

    7883bb64bc382ea08878b52e68e6eb59ec3e0038abcb1f6e6525723558683df5c360923f2b8ca8055784dd79b57182f155d16323b5ff5ae3455e18137d2a1b19

  • SSDEEP

    3072:fnyiQSo1EZGtKgZGtK/PgtU1wAIuZAIucSarSa25gbem:KiQSo1EZGtKgZGtK/CAIuZAIucSarSab

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      235a96bb51acefab4622ba3eac37eb80_NeikiAnalytics.exe

    • Size

      191KB

    • MD5

      235a96bb51acefab4622ba3eac37eb80

    • SHA1

      7b6d4e180c82bea3f2856750b33c1ca02af209a8

    • SHA256

      4b3fa85b2e72155c2d09d66f57ea6b3463c36a842e5ac075815c2bb3de248613

    • SHA512

      7883bb64bc382ea08878b52e68e6eb59ec3e0038abcb1f6e6525723558683df5c360923f2b8ca8055784dd79b57182f155d16323b5ff5ae3455e18137d2a1b19

    • SSDEEP

      3072:fnyiQSo1EZGtKgZGtK/PgtU1wAIuZAIucSarSa25gbem:KiQSo1EZGtKgZGtK/CAIuZAIucSarSab

    Score
    9/10
    ransomwareupx

    • Renames multiple (418) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks