bdbf1149aa09ab43b4493732639da311ddee2fc85971709b1228e62a28d3d672 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

099dee1ce1...cs.exe

windows7-x64

9

099dee1ce1...cs.exe

windows10-2004-x64

9

Sharing

General

Target

099dee1ce1987d98ecbb8fff801947d0_NeikiAnalytics.exe
Size

71KB
Sample

240609-bz9bcacc59
MD5

099dee1ce1987d98ecbb8fff801947d0
SHA1

5e60630413ed61443f79272104ae144a3bff3b22
SHA256

bdbf1149aa09ab43b4493732639da311ddee2fc85971709b1228e62a28d3d672
SHA512

ed6a075bf1256abb309954c12c26616c3449329f3c2c4ea78eb329523be473e21a7efa4ccf70c5a8e335913d7b8b5abd7db740c63691401062fb5a522c783246
SSDEEP

1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8q2U:fnyiQSoT2U

Score

9^/10

ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

099dee1ce1987d98ecbb8fff801947d0_NeikiAnalytics.exe

Resource

win7-20240220-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

099dee1ce1987d98ecbb8fff801947d0_NeikiAnalytics.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  099dee1ce1987d98ecbb8fff801947d0_NeikiAnalytics.exe
- Size
  
  71KB
- MD5
  
  099dee1ce1987d98ecbb8fff801947d0
- SHA1
  
  5e60630413ed61443f79272104ae144a3bff3b22
- SHA256
  
  bdbf1149aa09ab43b4493732639da311ddee2fc85971709b1228e62a28d3d672
- SHA512
  
  ed6a075bf1256abb309954c12c26616c3449329f3c2c4ea78eb329523be473e21a7efa4ccf70c5a8e335913d7b8b5abd7db740c63691401062fb5a522c783246
- SSDEEP
  
  1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8q2U:fnyiQSoT2U
Score

9^/10

ransomware upx
- Renames multiple (3470) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy