b74504dfa36d686df68fc68723394e93a2e6778805c014d92cb0783f719a71f7 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

979482f19c...cs.exe

windows7-x64

9

979482f19c...cs.exe

windows10-2004-x64

9

Sharing

General

Target

979482f19cefed12c34e43820e7d24e0_NeikiAnalytics.exe
Size

178KB
Sample

240614-bzw11stflr
MD5

979482f19cefed12c34e43820e7d24e0
SHA1

7656ea114fae3c4155f5b03610e887ef83ea1a61
SHA256

b74504dfa36d686df68fc68723394e93a2e6778805c014d92cb0783f719a71f7
SHA512

70bc45d6b3172ffad7902681668138e4a2bbd8d6ef08e8d2ec8a74755ef7a7265bfcf989c7f14a0f2c7ebf0800144d8e70790c15f3154f14b2c9e831fc8e5546
SSDEEP

3072:6e7WpP9oVLQthbYY9oVLQthbUvZe7WpP9oVLQthbYY9oVLQthbUvR:RqAEqAZ

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

979482f19cefed12c34e43820e7d24e0_NeikiAnalytics.exe

Resource

win7-20240508-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

979482f19cefed12c34e43820e7d24e0_NeikiAnalytics.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  979482f19cefed12c34e43820e7d24e0_NeikiAnalytics.exe
- Size
  
  178KB
- MD5
  
  979482f19cefed12c34e43820e7d24e0
- SHA1
  
  7656ea114fae3c4155f5b03610e887ef83ea1a61
- SHA256
  
  b74504dfa36d686df68fc68723394e93a2e6778805c014d92cb0783f719a71f7
- SHA512
  
  70bc45d6b3172ffad7902681668138e4a2bbd8d6ef08e8d2ec8a74755ef7a7265bfcf989c7f14a0f2c7ebf0800144d8e70790c15f3154f14b2c9e831fc8e5546
- SSDEEP
  
  3072:6e7WpP9oVLQthbYY9oVLQthbUvZe7WpP9oVLQthbYY9oVLQthbUvR:RqAEqAZ
Score

9^/10

ransomware
- Renames multiple (4490) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy