General

  • Target

    2c05360088195aad54206bdc88d543c0_NeikiAnalytics.exe

  • Size

    59KB

  • Sample

    240612-khw45awdja

  • MD5

    2c05360088195aad54206bdc88d543c0

  • SHA1

    e846923519266547aebf03ee203e84899b6a8be7

  • SHA256

    06a2350616b46b2a218d28c2e44fda3641ddc6156cc5199b3641f0a67c1d9393

  • SHA512

    63939bb52d8fd9ecbc2f75a6307e8b67c00eb78807bbf05c34b8af13aba225477e3349c8d9facade814151db8bdc074a9ce74d714362e05cdb80ea1060baab13

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsxe+eX7n97ns1o8k1o8nn:KQSohsUsxe+erZs1o8k1o8n

Score
9/10

Malware Config

Targets

    • Target

      2c05360088195aad54206bdc88d543c0_NeikiAnalytics.exe

    • Size

      59KB

    • MD5

      2c05360088195aad54206bdc88d543c0

    • SHA1

      e846923519266547aebf03ee203e84899b6a8be7

    • SHA256

      06a2350616b46b2a218d28c2e44fda3641ddc6156cc5199b3641f0a67c1d9393

    • SHA512

      63939bb52d8fd9ecbc2f75a6307e8b67c00eb78807bbf05c34b8af13aba225477e3349c8d9facade814151db8bdc074a9ce74d714362e05cdb80ea1060baab13

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsxe+eX7n97ns1o8k1o8nn:KQSohsUsxe+erZs1o8k1o8n

    Score
    9/10
    • Renames multiple (3775) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks