General

  • Target

    964f47baaab975b8a1332d3d9576c230_NeikiAnalytics.exe

  • Size

    74KB

  • Sample

    240608-hqlbgsah95

  • MD5

    964f47baaab975b8a1332d3d9576c230

  • SHA1

    fb1af981f956779dce65e0c2090e36cf0f932eff

  • SHA256

    94f7cc1bf056c0f7de8a72c69249ca2d3add575cf6a17f5ef76d54d0dc83e39b

  • SHA512

    c1b4a7d222feec482006936421978f555f73db21de0c6be05f2b8d972c020e4bb5e4dab3385609ebb64647667369c42fd50c417954e9d7ebcdba6d9f14e4a1fa

  • SSDEEP

    1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q85JiRJia:+nyiQSoT

Score
9/10

Malware Config

Targets

    • Target

      964f47baaab975b8a1332d3d9576c230_NeikiAnalytics.exe

    • Size

      74KB

    • MD5

      964f47baaab975b8a1332d3d9576c230

    • SHA1

      fb1af981f956779dce65e0c2090e36cf0f932eff

    • SHA256

      94f7cc1bf056c0f7de8a72c69249ca2d3add575cf6a17f5ef76d54d0dc83e39b

    • SHA512

      c1b4a7d222feec482006936421978f555f73db21de0c6be05f2b8d972c020e4bb5e4dab3385609ebb64647667369c42fd50c417954e9d7ebcdba6d9f14e4a1fa

    • SSDEEP

      1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q85JiRJia:+nyiQSoT

    Score
    9/10
    • Renames multiple (3432) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks