Overview

overview

9

Static

static

7

42388c684c...cs.exe

windows7-x64

9

42388c684c...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    42388c684c58c86ca35c275fdc110450_NeikiAnalytics.exe

  • Size

    192KB

  • Sample

    240605-gpaypafh4x

  • MD5

    42388c684c58c86ca35c275fdc110450

  • SHA1

    437dd423f297937c5f4dd64b22a06f8a02bf345a

  • SHA256

    aa7047f964f4155ef20bc3a58269b1143585a6255959efe0b04f710630d64daa

  • SHA512

    59b5df797d909817920e45819db619f537d283cb93ea1d4cb0f28e983d1e9633b9aec358b62a13783a5166efcea8cad4f324dd430bb7c4458dd863d18ae304ea

  • SSDEEP

    3072:fnyiQSo1EZGtKgZGtK/PgtU1wAIuZAIu+r3:KiQSo1EZGtKgZGtK/CAIuZAIuC

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      42388c684c58c86ca35c275fdc110450_NeikiAnalytics.exe

    • Size

      192KB

    • MD5

      42388c684c58c86ca35c275fdc110450

    • SHA1

      437dd423f297937c5f4dd64b22a06f8a02bf345a

    • SHA256

      aa7047f964f4155ef20bc3a58269b1143585a6255959efe0b04f710630d64daa

    • SHA512

      59b5df797d909817920e45819db619f537d283cb93ea1d4cb0f28e983d1e9633b9aec358b62a13783a5166efcea8cad4f324dd430bb7c4458dd863d18ae304ea

    • SSDEEP

      3072:fnyiQSo1EZGtKgZGtK/PgtU1wAIuZAIu+r3:KiQSo1EZGtKgZGtK/CAIuZAIuC

    Score
    9/10
    ransomwareupx

    • Renames multiple (3217) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks