Overview

overview

9

Static

static

7

871c8cf2bd...cs.exe

windows7-x64

9

871c8cf2bd...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    871c8cf2bd43fbcac1ab05d7d979ae10_NeikiAnalytics.exe

  • Size

    89KB

  • Sample

    240613-zycgzszeph

  • MD5

    871c8cf2bd43fbcac1ab05d7d979ae10

  • SHA1

    0c9f0d34fe3ce89c77b322cc30227d3b0a30fdfe

  • SHA256

    5deb4767ec54b84d041044db8017b2398bb85de818146efc80a40a5648cb23cd

  • SHA512

    16e3a984fe5bbd7715fba6916f78f44868ba80a13b05009f65bd2ee1878ebef8a4dbf67b08bbb07c07acc19c8bab5e309f3912ecbfdfa14417036cd55ac7f807

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsxe+eX7n97ns1o8k1o8wQoQ3:fnyiQSohsUsxe+erZs1o8k1o85R3

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      871c8cf2bd43fbcac1ab05d7d979ae10_NeikiAnalytics.exe

    • Size

      89KB

    • MD5

      871c8cf2bd43fbcac1ab05d7d979ae10

    • SHA1

      0c9f0d34fe3ce89c77b322cc30227d3b0a30fdfe

    • SHA256

      5deb4767ec54b84d041044db8017b2398bb85de818146efc80a40a5648cb23cd

    • SHA512

      16e3a984fe5bbd7715fba6916f78f44868ba80a13b05009f65bd2ee1878ebef8a4dbf67b08bbb07c07acc19c8bab5e309f3912ecbfdfa14417036cd55ac7f807

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsxe+eX7n97ns1o8k1o8wQoQ3:fnyiQSohsUsxe+erZs1o8k1o85R3

    Score
    9/10
    ransomwareupx

    • Renames multiple (3523) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks