General
-
Target
4c1cfbb723d21be193bfb440d8cd5110_NeikiAnalytics.exe
-
Size
634KB
-
Sample
240612-28q48svbre
-
MD5
4c1cfbb723d21be193bfb440d8cd5110
-
SHA1
8c66ea37d1a96ef84847890b0dad3333c20b3794
-
SHA256
4b5bcba30ead9a4d188635e453c43b346d3d1c5a4e3083f039f9eb236cf98d49
-
SHA512
03f1f291cfe1f6d8e7f1b58173df61f25e24354c13bd58402d392d92354321c472e78554225c0c14390ab5a0f875d607c564baea82d5f64bafcf595e039cbf93
-
SSDEEP
12288:3PxPir9RyiIuGcKbpaSL4vtrPxPir9RyiIuGcKbpaSL4vte:3PxPiRRyisBpaSsvtrPxPiRRyisBpaS9
Static task
static1
Behavioral task
behavioral1
Sample
4c1cfbb723d21be193bfb440d8cd5110_NeikiAnalytics.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
4c1cfbb723d21be193bfb440d8cd5110_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
4c1cfbb723d21be193bfb440d8cd5110_NeikiAnalytics.exe
-
Size
634KB
-
MD5
4c1cfbb723d21be193bfb440d8cd5110
-
SHA1
8c66ea37d1a96ef84847890b0dad3333c20b3794
-
SHA256
4b5bcba30ead9a4d188635e453c43b346d3d1c5a4e3083f039f9eb236cf98d49
-
SHA512
03f1f291cfe1f6d8e7f1b58173df61f25e24354c13bd58402d392d92354321c472e78554225c0c14390ab5a0f875d607c564baea82d5f64bafcf595e039cbf93
-
SSDEEP
12288:3PxPir9RyiIuGcKbpaSL4vtrPxPir9RyiIuGcKbpaSL4vte:3PxPiRRyisBpaSsvtrPxPiRRyisBpaS9
Score9/10-
Renames multiple (322) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-