Overview

overview

9

Static

static

7

4f15a07440...cs.exe

windows7-x64

9

4f15a07440...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    4f15a074407c1438a885c3e7bc4e1bf0_NeikiAnalytics.exe

  • Size

    228KB

  • Sample

    240605-lv4v6scd3z

  • MD5

    4f15a074407c1438a885c3e7bc4e1bf0

  • SHA1

    2efded8a3bad4203a51dc40973742648f4895fbb

  • SHA256

    8494da24887d215d9f7dae2825e801479b5a70fdc3e6ca76dccf8f0d875e8213

  • SHA512

    5f1345a54eac0d187c86a4215e29b9d5c6122a27b139454e499310dc123685b1c2449d2283a73677827a43de2382868fefc035edf44b31c7720624bef2676b4d

  • SSDEEP

    3072:+nyiQSo1EZGtKgZGtK/PgtU1wAIuZAIuYch93g+gfFpsJOfFpsJL:JiQSo1EZGtKgZGtK/CAIuZAIuH3f

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      4f15a074407c1438a885c3e7bc4e1bf0_NeikiAnalytics.exe

    • Size

      228KB

    • MD5

      4f15a074407c1438a885c3e7bc4e1bf0

    • SHA1

      2efded8a3bad4203a51dc40973742648f4895fbb

    • SHA256

      8494da24887d215d9f7dae2825e801479b5a70fdc3e6ca76dccf8f0d875e8213

    • SHA512

      5f1345a54eac0d187c86a4215e29b9d5c6122a27b139454e499310dc123685b1c2449d2283a73677827a43de2382868fefc035edf44b31c7720624bef2676b4d

    • SSDEEP

      3072:+nyiQSo1EZGtKgZGtK/PgtU1wAIuZAIuYch93g+gfFpsJOfFpsJL:JiQSo1EZGtKgZGtK/CAIuZAIuH3f

    Score
    9/10
    ransomwareupx

    • Renames multiple (3085) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks