General
-
Target
951bf3ad10b5152dd80a0fd6bd8c0e30_NeikiAnalytics.exe
-
Size
95KB
-
Sample
240608-hfdhwsag94
-
MD5
951bf3ad10b5152dd80a0fd6bd8c0e30
-
SHA1
8d82f0b7b320219792042c3d3fec2344c2335abc
-
SHA256
666d0a71409fd7bfb6398d8abc9f789fa7d9300a33f801488215e75150945d04
-
SHA512
0e2aa744666de84e5bdefa241c3c894634bea0b579f0832f344a254d37d9551ffc487b89c125891a8feb4b896c817c5b5febeae1bc3e844b52efa3c1d18abbd2
-
SSDEEP
1536:/7ZQpApze+eJfFpsJOfFpsJl7ZQpApze+eJfFpsJOfFpsJnYd:9QWpze+eJfFpsJOfFpsJvQWpze+eJfFR
Static task
static1
Behavioral task
behavioral1
Sample
951bf3ad10b5152dd80a0fd6bd8c0e30_NeikiAnalytics.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
951bf3ad10b5152dd80a0fd6bd8c0e30_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
951bf3ad10b5152dd80a0fd6bd8c0e30_NeikiAnalytics.exe
-
Size
95KB
-
MD5
951bf3ad10b5152dd80a0fd6bd8c0e30
-
SHA1
8d82f0b7b320219792042c3d3fec2344c2335abc
-
SHA256
666d0a71409fd7bfb6398d8abc9f789fa7d9300a33f801488215e75150945d04
-
SHA512
0e2aa744666de84e5bdefa241c3c894634bea0b579f0832f344a254d37d9551ffc487b89c125891a8feb4b896c817c5b5febeae1bc3e844b52efa3c1d18abbd2
-
SSDEEP
1536:/7ZQpApze+eJfFpsJOfFpsJl7ZQpApze+eJfFpsJOfFpsJnYd:9QWpze+eJfFpsJOfFpsJvQWpze+eJfFR
Score9/10-
Renames multiple (4411) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-