Overview

overview

9

Static

static

7

31c79fcc67...cs.exe

windows7-x64

9

31c79fcc67...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    31c79fcc6752294a7a422ea676ec11e0_NeikiAnalytics.exe

  • Size

    258KB

  • Sample

    240611-mkzzxatdpg

  • MD5

    31c79fcc6752294a7a422ea676ec11e0

  • SHA1

    6d0fca1c247653bc0f2b42be29d2d4e3309950e1

  • SHA256

    b20c86baa44318d4d4b16538a497ec5c89bcec91b08829cebc2ff95c9efa2b2a

  • SHA512

    f27b6413e5f482834af992950576d8e20c13ee9f56c6ce9d1195ba42dee36a20bc098437ec82a90fb9cf4e86b411fb8c502f8d7793b1974d167c8c1e45c22dc5

  • SSDEEP

    3072:fnymCAIuZAIuYSMjoqtMHfhflixirfAIuZAIuYSMjoqtMHfhflixiJ:KmCAIuZAIuDMVtM/VfAIuZAIuDMVtM/H

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      31c79fcc6752294a7a422ea676ec11e0_NeikiAnalytics.exe

    • Size

      258KB

    • MD5

      31c79fcc6752294a7a422ea676ec11e0

    • SHA1

      6d0fca1c247653bc0f2b42be29d2d4e3309950e1

    • SHA256

      b20c86baa44318d4d4b16538a497ec5c89bcec91b08829cebc2ff95c9efa2b2a

    • SHA512

      f27b6413e5f482834af992950576d8e20c13ee9f56c6ce9d1195ba42dee36a20bc098437ec82a90fb9cf4e86b411fb8c502f8d7793b1974d167c8c1e45c22dc5

    • SSDEEP

      3072:fnymCAIuZAIuYSMjoqtMHfhflixirfAIuZAIuYSMjoqtMHfhflixiJ:KmCAIuZAIuDMVtM/VfAIuZAIuDMVtM/H

    Score
    9/10
    ransomwareupx

    • Renames multiple (2965) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks