General

  • Target

    78c68d01daa2fcadc44968dbbbbef9f0_NeikiAnalytics.exe

  • Size

    246KB

  • Sample

    240607-3wd5ksfb95

  • MD5

    78c68d01daa2fcadc44968dbbbbef9f0

  • SHA1

    b697b0123cc637b476bfe75a05754e4b45389674

  • SHA256

    da88c58f229e304e572a93318c62e39b781568c8145d0b71fbc1c77dad56edfe

  • SHA512

    459d67686fc3db56928d449c94236f5a9acd582157586dded77bea3c2c5b78791a60734a78e1fb1717345c999a8424628582224790f5ea2e3e30aca700d5ce11

  • SSDEEP

    6144:RqlIyFESWu0SWuGSwxEqlIyFESWu0SWuGSwxEYH:tyvyQ

Score
9/10

Malware Config

Targets

    • Target

      78c68d01daa2fcadc44968dbbbbef9f0_NeikiAnalytics.exe

    • Size

      246KB

    • MD5

      78c68d01daa2fcadc44968dbbbbef9f0

    • SHA1

      b697b0123cc637b476bfe75a05754e4b45389674

    • SHA256

      da88c58f229e304e572a93318c62e39b781568c8145d0b71fbc1c77dad56edfe

    • SHA512

      459d67686fc3db56928d449c94236f5a9acd582157586dded77bea3c2c5b78791a60734a78e1fb1717345c999a8424628582224790f5ea2e3e30aca700d5ce11

    • SSDEEP

      6144:RqlIyFESWu0SWuGSwxEqlIyFESWu0SWuGSwxEYH:tyvyQ

    Score
    9/10
    • Renames multiple (599) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks