General
-
Target
51374b391b75981a0f76bfffe2b2cf30_NeikiAnalytics.exe
-
Size
187KB
-
Sample
240613-a3721s1err
-
MD5
51374b391b75981a0f76bfffe2b2cf30
-
SHA1
d6977059b03d06313c20c12514191a809af2319b
-
SHA256
617bd345473ec96be8d467c34e1b20457ee284153966c540bf4eb122de730254
-
SHA512
f437a434465fa7abafc66ad7cf0e5478647d1623029284744b77e56f242b2692d00d19c05dd7ad18f44e2ba353cc80bf79cd3dd18d312b0db4b6522882437948
-
SSDEEP
3072:6NLWpCZLY0w9mHpKZNGCLOwstyhZFChcssc56FUrgxvbSD4UQrO2ZTxH:u6SYP9UpK7ShcHUaZJ
Static task
static1
Behavioral task
behavioral1
Sample
51374b391b75981a0f76bfffe2b2cf30_NeikiAnalytics.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
51374b391b75981a0f76bfffe2b2cf30_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
51374b391b75981a0f76bfffe2b2cf30_NeikiAnalytics.exe
-
Size
187KB
-
MD5
51374b391b75981a0f76bfffe2b2cf30
-
SHA1
d6977059b03d06313c20c12514191a809af2319b
-
SHA256
617bd345473ec96be8d467c34e1b20457ee284153966c540bf4eb122de730254
-
SHA512
f437a434465fa7abafc66ad7cf0e5478647d1623029284744b77e56f242b2692d00d19c05dd7ad18f44e2ba353cc80bf79cd3dd18d312b0db4b6522882437948
-
SSDEEP
3072:6NLWpCZLY0w9mHpKZNGCLOwstyhZFChcssc56FUrgxvbSD4UQrO2ZTxH:u6SYP9UpK7ShcHUaZJ
Score9/10-
Renames multiple (1029) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-