General

  • Target

    4c1cfbb723d21be193bfb440d8cd5110_NeikiAnalytics.exe

  • Size

    634KB

  • Sample

    240612-28q48svbre

  • MD5

    4c1cfbb723d21be193bfb440d8cd5110

  • SHA1

    8c66ea37d1a96ef84847890b0dad3333c20b3794

  • SHA256

    4b5bcba30ead9a4d188635e453c43b346d3d1c5a4e3083f039f9eb236cf98d49

  • SHA512

    03f1f291cfe1f6d8e7f1b58173df61f25e24354c13bd58402d392d92354321c472e78554225c0c14390ab5a0f875d607c564baea82d5f64bafcf595e039cbf93

  • SSDEEP

    12288:3PxPir9RyiIuGcKbpaSL4vtrPxPir9RyiIuGcKbpaSL4vte:3PxPiRRyisBpaSsvtrPxPiRRyisBpaS9

Score
9/10

Malware Config

Targets

    • Target

      4c1cfbb723d21be193bfb440d8cd5110_NeikiAnalytics.exe

    • Size

      634KB

    • MD5

      4c1cfbb723d21be193bfb440d8cd5110

    • SHA1

      8c66ea37d1a96ef84847890b0dad3333c20b3794

    • SHA256

      4b5bcba30ead9a4d188635e453c43b346d3d1c5a4e3083f039f9eb236cf98d49

    • SHA512

      03f1f291cfe1f6d8e7f1b58173df61f25e24354c13bd58402d392d92354321c472e78554225c0c14390ab5a0f875d607c564baea82d5f64bafcf595e039cbf93

    • SSDEEP

      12288:3PxPir9RyiIuGcKbpaSL4vtrPxPir9RyiIuGcKbpaSL4vte:3PxPiRRyisBpaSsvtrPxPiRRyisBpaS9

    Score
    9/10
    • Renames multiple (322) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks