General

  • Target

    97d84c8d8a91f9a4f9d4ced14e55daa0_NeikiAnalytics.exe

  • Size

    281KB

  • Sample

    240614-b3eadatgnn

  • MD5

    97d84c8d8a91f9a4f9d4ced14e55daa0

  • SHA1

    088c0836c8e538c5def8461064436130433ad58c

  • SHA256

    e6f3a9388424070978e0f88d3f235a2126cfbabc61c51d9fd93073b89f537ff5

  • SHA512

    12a33d4c5882cffa2b9e0afd0416a698842214937f52880ea591d2714f0d30e08a854e3f004638c8a9d08aa3e2db18ad9dfbb96e4f7d80bf6c0332f81b7767c2

  • SSDEEP

    3072:fnymCAIuZAIuYSMjoqtMHfhflixiWMU90HpKOrGCLOwstyhZFChcssc56FUrgxv2:KmCAIuZAIuDMVtM/Y59OpKgShcHUaA

Score
9/10

Malware Config

Targets

    • Target

      97d84c8d8a91f9a4f9d4ced14e55daa0_NeikiAnalytics.exe

    • Size

      281KB

    • MD5

      97d84c8d8a91f9a4f9d4ced14e55daa0

    • SHA1

      088c0836c8e538c5def8461064436130433ad58c

    • SHA256

      e6f3a9388424070978e0f88d3f235a2126cfbabc61c51d9fd93073b89f537ff5

    • SHA512

      12a33d4c5882cffa2b9e0afd0416a698842214937f52880ea591d2714f0d30e08a854e3f004638c8a9d08aa3e2db18ad9dfbb96e4f7d80bf6c0332f81b7767c2

    • SSDEEP

      3072:fnymCAIuZAIuYSMjoqtMHfhflixiWMU90HpKOrGCLOwstyhZFChcssc56FUrgxv2:KmCAIuZAIuDMVtM/Y59OpKgShcHUaA

    Score
    9/10
    • Renames multiple (2700) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks