General

  • Target

    9d2c365a13e1448a7c27d76199aa6eb0_NeikiAnalytics.exe

  • Size

    98KB

  • Sample

    240614-dh6j8ssgph

  • MD5

    9d2c365a13e1448a7c27d76199aa6eb0

  • SHA1

    89ca4c63ba267d99244ab253210e4ac77e410eb2

  • SHA256

    601b26c86f22a532ca7d133f8bea324a004ec166d3b0e47c941bb5e29faf26ab

  • SHA512

    df66215bd210579301b6b5365843256c4948133b9cd3ef8389af7177920a8a89caf3ac909f0c3b39e19c7af8b3725e44b2f1e353142d8d9049c005ec2b84472d

  • SSDEEP

    3072:9QWpze+eJfFpsJOfFpsJXQWpze+eJfFpsJOfFpsJbLXLq:Lpe+eipe+eL

Score
9/10

Malware Config

Targets

    • Target

      9d2c365a13e1448a7c27d76199aa6eb0_NeikiAnalytics.exe

    • Size

      98KB

    • MD5

      9d2c365a13e1448a7c27d76199aa6eb0

    • SHA1

      89ca4c63ba267d99244ab253210e4ac77e410eb2

    • SHA256

      601b26c86f22a532ca7d133f8bea324a004ec166d3b0e47c941bb5e29faf26ab

    • SHA512

      df66215bd210579301b6b5365843256c4948133b9cd3ef8389af7177920a8a89caf3ac909f0c3b39e19c7af8b3725e44b2f1e353142d8d9049c005ec2b84472d

    • SSDEEP

      3072:9QWpze+eJfFpsJOfFpsJXQWpze+eJfFpsJOfFpsJbLXLq:Lpe+eipe+eL

    Score
    9/10
    • Renames multiple (4349) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks