General

  • Target

    65177c07212f19ba71877f8c03ebeaf0_NeikiAnalytics.exe

  • Size

    256KB

  • Sample

    240613-g376ca1enk

  • MD5

    65177c07212f19ba71877f8c03ebeaf0

  • SHA1

    02e4574e39bda3847e4e8e0cc2328d0192a6e8c8

  • SHA256

    24ea42a8daa84a67f8f65e3ec26b067eccf80208ced6e34a102a2e3f084c6580

  • SHA512

    dda90a7ba0d112c714d8cf047a8e68152704406a57096fbc125e6b1cd86fedb8bcdc1906ef556bd033cd0cb5b18f50f0149ff51aa68183c7bcd0b6d5639e099e

  • SSDEEP

    3072:fnymCAIuZAIuYSMjoqtMHfhflixiIfAIuZAIuYSMjoqtMHfhflixi0:KmCAIuZAIuDMVtM/OfAIuZAIuDMVtM/O

Score
9/10

Malware Config

Targets

    • Target

      65177c07212f19ba71877f8c03ebeaf0_NeikiAnalytics.exe

    • Size

      256KB

    • MD5

      65177c07212f19ba71877f8c03ebeaf0

    • SHA1

      02e4574e39bda3847e4e8e0cc2328d0192a6e8c8

    • SHA256

      24ea42a8daa84a67f8f65e3ec26b067eccf80208ced6e34a102a2e3f084c6580

    • SHA512

      dda90a7ba0d112c714d8cf047a8e68152704406a57096fbc125e6b1cd86fedb8bcdc1906ef556bd033cd0cb5b18f50f0149ff51aa68183c7bcd0b6d5639e099e

    • SSDEEP

      3072:fnymCAIuZAIuYSMjoqtMHfhflixiIfAIuZAIuYSMjoqtMHfhflixi0:KmCAIuZAIuDMVtM/OfAIuZAIuDMVtM/O

    Score
    9/10
    • Renames multiple (2843) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks