Overview

overview

9

Static

static

7

03c55ade67...cs.exe

windows7-x64

9

03c55ade67...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    03c55ade678df84281878846e633d1d0_NeikiAnalytics.exe

  • Size

    45KB

  • Sample

    240606-lref4sce71

  • MD5

    03c55ade678df84281878846e633d1d0

  • SHA1

    f9bbd95ee281c61f360e1de88b1160970002192b

  • SHA256

    49272c19a092eb6c3bdac0a237ba6e08702ed38a300f540ac62ed7f134f7087d

  • SHA512

    f192e5753e7ef022bae5d55f54ac9a3087e5d6313cd5e73e32e0b082da4ae3a03fa7a77282a67826c7826d1c0624ec551376d002d73b5c6042499e8f6f0ee759

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFQE:CTWn1++PJHJXA/OsIZfzc3/Q8Q8/8A

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      03c55ade678df84281878846e633d1d0_NeikiAnalytics.exe

    • Size

      45KB

    • MD5

      03c55ade678df84281878846e633d1d0

    • SHA1

      f9bbd95ee281c61f360e1de88b1160970002192b

    • SHA256

      49272c19a092eb6c3bdac0a237ba6e08702ed38a300f540ac62ed7f134f7087d

    • SHA512

      f192e5753e7ef022bae5d55f54ac9a3087e5d6313cd5e73e32e0b082da4ae3a03fa7a77282a67826c7826d1c0624ec551376d002d73b5c6042499e8f6f0ee759

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFQE:CTWn1++PJHJXA/OsIZfzc3/Q8Q8/8A

    Score
    9/10
    ransomwareupx

    • Renames multiple (3774) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks