Overview

overview

9

Static

static

7

7dfedbe56a...cs.exe

windows7-x64

9

7dfedbe56a...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    7dfedbe56a6677a4c7c5aad7e2923fb0_NeikiAnalytics.exe

  • Size

    45KB

  • Sample

    240608-bes4mafg44

  • MD5

    7dfedbe56a6677a4c7c5aad7e2923fb0

  • SHA1

    d5cc0b3b5831ce4fe0607d7049925c816c5c9d1f

  • SHA256

    3bd66770116bfdd8f79fcee3314d4adc0a60bfe1dd4f0ec6a2f2660811fc773f

  • SHA512

    f4b59c9c2def4b4c544bd81a6611fa2444955238856e3a5720d5343185a4a687411d55406595e8e2baf90c85d3d486c0ebe5a013a6dbb13ec36f82b1ea913995

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFQz:CTWn1++PJHJXA/OsIZfzc3/Q8Q8/8f

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      7dfedbe56a6677a4c7c5aad7e2923fb0_NeikiAnalytics.exe

    • Size

      45KB

    • MD5

      7dfedbe56a6677a4c7c5aad7e2923fb0

    • SHA1

      d5cc0b3b5831ce4fe0607d7049925c816c5c9d1f

    • SHA256

      3bd66770116bfdd8f79fcee3314d4adc0a60bfe1dd4f0ec6a2f2660811fc773f

    • SHA512

      f4b59c9c2def4b4c544bd81a6611fa2444955238856e3a5720d5343185a4a687411d55406595e8e2baf90c85d3d486c0ebe5a013a6dbb13ec36f82b1ea913995

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFQz:CTWn1++PJHJXA/OsIZfzc3/Q8Q8/8f

    Score
    9/10
    ransomwareupx

    • Renames multiple (3931) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks