General

  • Target

    51ee57422454e46e3532b28895681950_NeikiAnalytics.exe

  • Size

    100KB

  • Sample

    240613-ba332axhrb

  • MD5

    51ee57422454e46e3532b28895681950

  • SHA1

    9ba7a5d6a2f3b8de9b0afc80659750cb2bbdb2b2

  • SHA256

    14b573a516ac00260c1abfc619979b33dee8e2a465c237abfd01d44c44a3de8e

  • SHA512

    425f24d98ebdd5888cbf02cec2c4f72139960a9b811a70831f1283eea574c6791b87493124343758c160c16f98294b058987499b4ad3ad771f398bb43f9f5163

  • SSDEEP

    3072:9QWpze+eJfFpsJOfFpsJHQWpze+eJfFpsJOfFpsJYl5:Lpe+eepe+eP

Score
9/10

Malware Config

Targets

    • Target

      51ee57422454e46e3532b28895681950_NeikiAnalytics.exe

    • Size

      100KB

    • MD5

      51ee57422454e46e3532b28895681950

    • SHA1

      9ba7a5d6a2f3b8de9b0afc80659750cb2bbdb2b2

    • SHA256

      14b573a516ac00260c1abfc619979b33dee8e2a465c237abfd01d44c44a3de8e

    • SHA512

      425f24d98ebdd5888cbf02cec2c4f72139960a9b811a70831f1283eea574c6791b87493124343758c160c16f98294b058987499b4ad3ad771f398bb43f9f5163

    • SSDEEP

      3072:9QWpze+eJfFpsJOfFpsJHQWpze+eJfFpsJOfFpsJYl5:Lpe+eepe+eP

    Score
    9/10
    • Renames multiple (6104) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks