Overview

overview

9

Static

static

3

1c235ff769...cs.exe

windows7-x64

9

1c235ff769...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    1c235ff769a5f8ba097aa9fc786e4af0_NeikiAnalytics.exe

  • Size

    89KB

  • Sample

    240610-1crkfs1hnp

  • MD5

    1c235ff769a5f8ba097aa9fc786e4af0

  • SHA1

    d0228227195c8660b914a9f940638e25e7934bda

  • SHA256

    73a8ce74ed896e7b6ae9cd166236fe369f50e1d1280fc68c60f0f73012bf9d1e

  • SHA512

    836551c28840d31e4a28a8bb95ebc775fea2eebe5ceb109c798f640813269c54c59c24bc6db763fbe1728d76602bbcaf056fdc0a5a16b889be7f184ad69eda55

  • SSDEEP

    768:/7BlpQpARFbhIYJIJDYJIJR2Q7BlpQpARFbhIYJIJDYJIJR2olN:/7ZQpApze+eR7ZQpApze+eF

Score
9/10
ransomware

Malware Config

Targets

    • Target

      1c235ff769a5f8ba097aa9fc786e4af0_NeikiAnalytics.exe

    • Size

      89KB

    • MD5

      1c235ff769a5f8ba097aa9fc786e4af0

    • SHA1

      d0228227195c8660b914a9f940638e25e7934bda

    • SHA256

      73a8ce74ed896e7b6ae9cd166236fe369f50e1d1280fc68c60f0f73012bf9d1e

    • SHA512

      836551c28840d31e4a28a8bb95ebc775fea2eebe5ceb109c798f640813269c54c59c24bc6db763fbe1728d76602bbcaf056fdc0a5a16b889be7f184ad69eda55

    • SSDEEP

      768:/7BlpQpARFbhIYJIJDYJIJR2Q7BlpQpARFbhIYJIJDYJIJR2olN:/7ZQpApze+eR7ZQpApze+eF

    Score
    9/10
    ransomware

    • Renames multiple (4283) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks