General

  • Target

    342cd41aa086a8987c6476379bc1b730_NeikiAnalytics.exe

  • Size

    168KB

  • Sample

    240612-mv66zavgqk

  • MD5

    342cd41aa086a8987c6476379bc1b730

  • SHA1

    6e1ca84ef547e3f2c390792ce5692e257a951f34

  • SHA256

    40fff46e1f2c2c3ec4d7eef6e99a59313507bda01f5f652022e827a5582971da

  • SHA512

    2773ca01dfe31022d136f3bfee25c350d4ce7dc298a1b993d4637fb5e0be0e4aae57df3ea89d10c552797307744c9c31abd3e83c940cb1cbc8f4d435d08153c1

  • SSDEEP

    384:GBt7Br5xjL9AgA71FbhvoBlLLTBSBUBt7Br5xjL9AgA71FbhvoBlLLTBSBO4:W7BlpppARFbhA7BlpppARFbhV

Score
9/10

Malware Config

Targets

    • Target

      342cd41aa086a8987c6476379bc1b730_NeikiAnalytics.exe

    • Size

      168KB

    • MD5

      342cd41aa086a8987c6476379bc1b730

    • SHA1

      6e1ca84ef547e3f2c390792ce5692e257a951f34

    • SHA256

      40fff46e1f2c2c3ec4d7eef6e99a59313507bda01f5f652022e827a5582971da

    • SHA512

      2773ca01dfe31022d136f3bfee25c350d4ce7dc298a1b993d4637fb5e0be0e4aae57df3ea89d10c552797307744c9c31abd3e83c940cb1cbc8f4d435d08153c1

    • SSDEEP

      384:GBt7Br5xjL9AgA71FbhvoBlLLTBSBUBt7Br5xjL9AgA71FbhvoBlLLTBSBO4:W7BlpppARFbhA7BlpppARFbhV

    Score
    9/10
    • Renames multiple (4131) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks