Analysis

  • max time kernel
    12s
  • max time network
    93s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/06/2024, 03:55

General

  • Target

    89b4185b9a1ec003bb3b95a4dc3fd760_NeikiAnalytics.exe

  • Size

    54KB

  • MD5

    89b4185b9a1ec003bb3b95a4dc3fd760

  • SHA1

    36b0a7c1708e5b80906b9888cd57a58d0ea422d5

  • SHA256

    254d7796c618f88547f8ab7664dfbcf2f489e732a996921509866459d8a620bc

  • SHA512

    a321974a734cee10b3e600420109e9e92beccda8dd5087382065bec17f1b9485255193319f7ed5faa6365e3bf361356039ebd2190273f9015e13bb9385dd105f

  • SSDEEP

    768:W7BlpNLpARFbhblkYlkuvIYFUJcJzEXBwzEXBwv:W7ZNLpApCZuvIY+JcJv

Score
9/10

Malware Config

Signatures

  • Renames multiple (341) files with added filename extension

    This suggests ransomware activity of encrypting all the files on the system.

  • Drops file in Program Files directory 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\89b4185b9a1ec003bb3b95a4dc3fd760_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\89b4185b9a1ec003bb3b95a4dc3fd760_NeikiAnalytics.exe"
    1⤵
    • Drops file in Program Files directory
    PID:4352

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\$Recycle.Bin\S-1-5-21-3558294865-3673844354-2255444939-1000\desktop.ini.tmp

          Filesize

          54KB

          MD5

          52d6723c1c3ab4587b502384fb68b36d

          SHA1

          21c41c5ae78e6dccf0d4a50cfa1ceba0625c2f32

          SHA256

          66bbb15a4ba20ae5e93cce60a4c967f1ad88977091e8532f08ca2990b54a7a48

          SHA512

          82b3765f9db072d7bad57e9cd58fd39a37bba73bb5165ac406e41602bd9077040edc7e64901de18dc258e24d3409ebe75d0dcd8f24c37e4f994d35a10931b8a4

        • C:\Program Files\7-Zip\7-zip.dll.tmp

          Filesize

          153KB

          MD5

          786cea863b5718b58ed46a2ca2b05adb

          SHA1

          29013eb5bc1ccce09cb35fe7e42d7aafff8036ad

          SHA256

          520a82fa1406627bcb910585c8160a30b4f6ea46472e07edd86265f5f7a47a48

          SHA512

          7ed9cdffacffa67eaeca3b4f75d455c6665f352be02dd489f1af30f1dfd9437eb850b5383c699cba42cc7e59e4feec38081f3280cb76493db378bb8fdea07d72