General

  • Target

    9c2b4001751685b715db74a7654b85f0_NeikiAnalytics.exe

  • Size

    94KB

  • Sample

    240614-c7x4qawdql

  • MD5

    9c2b4001751685b715db74a7654b85f0

  • SHA1

    6f4263d923e7323b4424497f63634660fc2d3470

  • SHA256

    ae2efbf00c46483992ccb4d33262d689f298321598134978595926a7fbf2da09

  • SHA512

    f3395253c411a5b9eee174676ee39ebf5f3853866f1f9985bcc211e4269d92af21639985330a00c09643ab711cc34e842867b54f3912f4aab90e5fcacc52cab0

  • SSDEEP

    1536:/7ZQpApze+eJfFpsJOfFpsJs7ZQpApze+eJfFpsJOfFpsJO:9QWpze+eJfFpsJOfFpsJsQWpze+eJfF3

Score
9/10

Malware Config

Targets

    • Target

      9c2b4001751685b715db74a7654b85f0_NeikiAnalytics.exe

    • Size

      94KB

    • MD5

      9c2b4001751685b715db74a7654b85f0

    • SHA1

      6f4263d923e7323b4424497f63634660fc2d3470

    • SHA256

      ae2efbf00c46483992ccb4d33262d689f298321598134978595926a7fbf2da09

    • SHA512

      f3395253c411a5b9eee174676ee39ebf5f3853866f1f9985bcc211e4269d92af21639985330a00c09643ab711cc34e842867b54f3912f4aab90e5fcacc52cab0

    • SSDEEP

      1536:/7ZQpApze+eJfFpsJOfFpsJs7ZQpApze+eJfFpsJOfFpsJO:9QWpze+eJfFpsJOfFpsJsQWpze+eJfF3

    Score
    9/10
    • Renames multiple (6161) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks