General

  • Target

    9b2d134b8d6ffbc935a2e7ce0cef91d0_NeikiAnalytics.exe

  • Size

    79KB

  • Sample

    240614-cxxp7swbnl

  • MD5

    9b2d134b8d6ffbc935a2e7ce0cef91d0

  • SHA1

    08bad4c3f93793fb600b21a702dee160785e2380

  • SHA256

    94a49d87a1f0ca6c709b0a09d1b4c11132ffe940d8837d6d2db727236dc81881

  • SHA512

    3268f00ff816dacc5186f67b857a54629c6d8df170b47b325ebb2e10f048a7084d8f4f5c781619bb9ea1c8bc2cffc501bc931f8153aefc7d2ba57fc6b9b11f0a

  • SSDEEP

    768:W7BlpppARFbhgCqCi7Y7P7BlpppARFbhi:W7ZppApgCqCR7ZppApi

Score
9/10

Malware Config

Targets

    • Target

      9b2d134b8d6ffbc935a2e7ce0cef91d0_NeikiAnalytics.exe

    • Size

      79KB

    • MD5

      9b2d134b8d6ffbc935a2e7ce0cef91d0

    • SHA1

      08bad4c3f93793fb600b21a702dee160785e2380

    • SHA256

      94a49d87a1f0ca6c709b0a09d1b4c11132ffe940d8837d6d2db727236dc81881

    • SHA512

      3268f00ff816dacc5186f67b857a54629c6d8df170b47b325ebb2e10f048a7084d8f4f5c781619bb9ea1c8bc2cffc501bc931f8153aefc7d2ba57fc6b9b11f0a

    • SSDEEP

      768:W7BlpppARFbhgCqCi7Y7P7BlpppARFbhi:W7ZppApgCqCR7ZppApi

    Score
    9/10
    • Renames multiple (4129) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks