General

  • Target

    9546bff96651a5ed24b8deb0f23a33c0_NeikiAnalytics.exe

  • Size

    64KB

  • Sample

    240608-hgzshshh31

  • MD5

    9546bff96651a5ed24b8deb0f23a33c0

  • SHA1

    4b5a83763f98ccae51d6a5e031892c6dafa5f5a1

  • SHA256

    e7c2d42788bf973f9704c33a6b92b49f7a686f9c01f94dd81114a0c324e371fc

  • SHA512

    d71960e3f477c5eaa148953cdbe8c119fb318ce1d6bbc22a246b139bc2cf0508aaf42d76b9f06c7f0099a92cb4a0ca405193ebf8b8cc8411d2f5df614ca5d241

  • SSDEEP

    384:GBt7Br5xjL9AgA71FbhvuNBNQFJBt7Br5xjL9AgA71FbhvuNBNQF8C0q:W7BlpppARFbhHFZ7BlpppARFbhHF8C0q

Score
9/10

Malware Config

Targets

    • Target

      9546bff96651a5ed24b8deb0f23a33c0_NeikiAnalytics.exe

    • Size

      64KB

    • MD5

      9546bff96651a5ed24b8deb0f23a33c0

    • SHA1

      4b5a83763f98ccae51d6a5e031892c6dafa5f5a1

    • SHA256

      e7c2d42788bf973f9704c33a6b92b49f7a686f9c01f94dd81114a0c324e371fc

    • SHA512

      d71960e3f477c5eaa148953cdbe8c119fb318ce1d6bbc22a246b139bc2cf0508aaf42d76b9f06c7f0099a92cb4a0ca405193ebf8b8cc8411d2f5df614ca5d241

    • SSDEEP

      384:GBt7Br5xjL9AgA71FbhvuNBNQFJBt7Br5xjL9AgA71FbhvuNBNQF8C0q:W7BlpppARFbhHFZ7BlpppARFbhHF8C0q

    Score
    9/10
    • Renames multiple (3901) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks