General
-
Target
2d982c3c0727d505a7d8588bafd00110_NeikiAnalytics.exe
-
Size
152KB
-
Sample
240612-k2cjtsxarp
-
MD5
2d982c3c0727d505a7d8588bafd00110
-
SHA1
d3db2783cbf575ea3cc3155e13085e5ee1337ad0
-
SHA256
d61ef1994fd19367156bb47836d158831522a3d624b7485789e0e6b65640b3da
-
SHA512
3eb0164a64d9a6626513a515b062a5c193a711f2b06117b64eda5858a3051cd84cc25804101342e53b016b590647d8dd43b4c37e5a0deea31dd2c69d85dffac7
-
SSDEEP
3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBG:PqFF2Ie+eFGqFF2Ie+eFW
Static task
static1
Behavioral task
behavioral1
Sample
2d982c3c0727d505a7d8588bafd00110_NeikiAnalytics.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2d982c3c0727d505a7d8588bafd00110_NeikiAnalytics.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
2d982c3c0727d505a7d8588bafd00110_NeikiAnalytics.exe
-
Size
152KB
-
MD5
2d982c3c0727d505a7d8588bafd00110
-
SHA1
d3db2783cbf575ea3cc3155e13085e5ee1337ad0
-
SHA256
d61ef1994fd19367156bb47836d158831522a3d624b7485789e0e6b65640b3da
-
SHA512
3eb0164a64d9a6626513a515b062a5c193a711f2b06117b64eda5858a3051cd84cc25804101342e53b016b590647d8dd43b4c37e5a0deea31dd2c69d85dffac7
-
SSDEEP
3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBG:PqFF2Ie+eFGqFF2Ie+eFW
Score9/10-
Renames multiple (4278) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-