General

  • Target

    642e9f2c6f77e9f04123611d6eea8170_NeikiAnalytics.exe

  • Size

    183KB

  • Sample

    240613-gr25yswhlc

  • MD5

    642e9f2c6f77e9f04123611d6eea8170

  • SHA1

    b6f4d65b23cc9ae499979e1a12c80c0658127690

  • SHA256

    cfe567f7962f71b45ab514d2b21804053cd00d005d95840cfe6be0a9c6aa603b

  • SHA512

    a3ddd6258464215e0a6b8e3548f117e367edfce43f591c10a8778ea2a073b287a787673a892f9df681ebda9f4c639f56539522a4630cc644cd39f27198f48fbe

  • SSDEEP

    3072:fnyiQSohsUsWU9BK3d9v+sr4XXqjsBqqEmZYiYybN80UqZ9GifppIYyaVch:KiQSohsUsWU9BUf4XXq4sqEMDYybuLW8

Score
9/10

Malware Config

Targets

    • Target

      642e9f2c6f77e9f04123611d6eea8170_NeikiAnalytics.exe

    • Size

      183KB

    • MD5

      642e9f2c6f77e9f04123611d6eea8170

    • SHA1

      b6f4d65b23cc9ae499979e1a12c80c0658127690

    • SHA256

      cfe567f7962f71b45ab514d2b21804053cd00d005d95840cfe6be0a9c6aa603b

    • SHA512

      a3ddd6258464215e0a6b8e3548f117e367edfce43f591c10a8778ea2a073b287a787673a892f9df681ebda9f4c639f56539522a4630cc644cd39f27198f48fbe

    • SSDEEP

      3072:fnyiQSohsUsWU9BK3d9v+sr4XXqjsBqqEmZYiYybN80UqZ9GifppIYyaVch:KiQSohsUsWU9BUf4XXq4sqEMDYybuLW8

    Score
    9/10
    • Renames multiple (3461) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks