General

  • Target

    48d5e6397853dabc217fda08aad47ff0_NeikiAnalytics.exe

  • Size

    94KB

  • Sample

    240612-17x1qawfnk

  • MD5

    48d5e6397853dabc217fda08aad47ff0

  • SHA1

    4fac129f9bed7c237e16408ba722c09a95ddbd3b

  • SHA256

    0f785d89f73cbf78334e1ad49dbd94d0933abe1098595ed4a534d0cead69eeb3

  • SHA512

    1f07e297c9c0e3b8ef96fb2babbbec22c3d0f3d9a803e2f48cf8f0ca063ad4553adfd5183c2fab76f03b4aa86735ab6b05c954fc2ccd7e1e9a0fa92104bebae2

  • SSDEEP

    1536:/7ZQpApze+eJfFpsJOfFpsJ87ZQpApze+eJfFpsJOfFpsJE:9QWpze+eJfFpsJOfFpsJ8QWpze+eJfFt

Score
9/10

Malware Config

Targets

    • Target

      48d5e6397853dabc217fda08aad47ff0_NeikiAnalytics.exe

    • Size

      94KB

    • MD5

      48d5e6397853dabc217fda08aad47ff0

    • SHA1

      4fac129f9bed7c237e16408ba722c09a95ddbd3b

    • SHA256

      0f785d89f73cbf78334e1ad49dbd94d0933abe1098595ed4a534d0cead69eeb3

    • SHA512

      1f07e297c9c0e3b8ef96fb2babbbec22c3d0f3d9a803e2f48cf8f0ca063ad4553adfd5183c2fab76f03b4aa86735ab6b05c954fc2ccd7e1e9a0fa92104bebae2

    • SSDEEP

      1536:/7ZQpApze+eJfFpsJOfFpsJ87ZQpApze+eJfFpsJOfFpsJE:9QWpze+eJfFpsJOfFpsJ8QWpze+eJfFt

    Score
    9/10
    • Renames multiple (4830) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks