General

  • Target

    2d982c3c0727d505a7d8588bafd00110_NeikiAnalytics.exe

  • Size

    152KB

  • Sample

    240612-k2cjtsxarp

  • MD5

    2d982c3c0727d505a7d8588bafd00110

  • SHA1

    d3db2783cbf575ea3cc3155e13085e5ee1337ad0

  • SHA256

    d61ef1994fd19367156bb47836d158831522a3d624b7485789e0e6b65640b3da

  • SHA512

    3eb0164a64d9a6626513a515b062a5c193a711f2b06117b64eda5858a3051cd84cc25804101342e53b016b590647d8dd43b4c37e5a0deea31dd2c69d85dffac7

  • SSDEEP

    3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBG:PqFF2Ie+eFGqFF2Ie+eFW

Score
9/10

Malware Config

Targets

    • Target

      2d982c3c0727d505a7d8588bafd00110_NeikiAnalytics.exe

    • Size

      152KB

    • MD5

      2d982c3c0727d505a7d8588bafd00110

    • SHA1

      d3db2783cbf575ea3cc3155e13085e5ee1337ad0

    • SHA256

      d61ef1994fd19367156bb47836d158831522a3d624b7485789e0e6b65640b3da

    • SHA512

      3eb0164a64d9a6626513a515b062a5c193a711f2b06117b64eda5858a3051cd84cc25804101342e53b016b590647d8dd43b4c37e5a0deea31dd2c69d85dffac7

    • SSDEEP

      3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBG:PqFF2Ie+eFGqFF2Ie+eFW

    Score
    9/10
    • Renames multiple (4278) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks