General

  • Target

    5e5c8334f4b6b3b9bd4d192e5582ebc0_NeikiAnalytics.exe

  • Size

    84KB

  • Sample

    240613-e2z28sxgkj

  • MD5

    5e5c8334f4b6b3b9bd4d192e5582ebc0

  • SHA1

    401be11200f8f712cff3f8062345ec7839e42cf9

  • SHA256

    afea0a12b91ca0ca64bb247ff6980bf8688f425d90f9c13a3e54255e5bda1fe2

  • SHA512

    ac6a18044d144bdc0c269aa07b73b5f9a611574e4b4aceeabe8eb50d37e606410064d2c5a965d7b23871df2c3186a6b4369a1c99210d062353cb36c66c842700

  • SSDEEP

    768:W7BlpNLpARFbhblkYlkuvIYFdi7BlpNLpARFbhblkYlkuvIYFdb:W7ZNLpApCZuvIYXi7ZNLpApCZuvIYXb

Score
9/10

Malware Config

Targets

    • Target

      5e5c8334f4b6b3b9bd4d192e5582ebc0_NeikiAnalytics.exe

    • Size

      84KB

    • MD5

      5e5c8334f4b6b3b9bd4d192e5582ebc0

    • SHA1

      401be11200f8f712cff3f8062345ec7839e42cf9

    • SHA256

      afea0a12b91ca0ca64bb247ff6980bf8688f425d90f9c13a3e54255e5bda1fe2

    • SHA512

      ac6a18044d144bdc0c269aa07b73b5f9a611574e4b4aceeabe8eb50d37e606410064d2c5a965d7b23871df2c3186a6b4369a1c99210d062353cb36c66c842700

    • SSDEEP

      768:W7BlpNLpARFbhblkYlkuvIYFdi7BlpNLpARFbhblkYlkuvIYFdb:W7ZNLpApCZuvIYXi7ZNLpApCZuvIYXb

    Score
    9/10
    • Renames multiple (5231) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks