General

  • Target

    a4976bd9b5beb2f8799f7e5ed975e640_NeikiAnalytics.exe

  • Size

    86KB

  • Sample

    240614-frybbswcrh

  • MD5

    a4976bd9b5beb2f8799f7e5ed975e640

  • SHA1

    fee71578c5ebe68d55edfb24bb7b8c0e9953168b

  • SHA256

    ee2bf95d5220c780441e271973a7f681f0af412bd12ba481371cb8d15ce7ad03

  • SHA512

    dfb63ac55620db8a528d6fcebc96099392c76f030b373a76a571b4ae1de2a3254819ece4006c23729a8eb3399f586a167b1f941836bc6e06658097078b6a652b

  • SSDEEP

    1536:W7ZNLpApCZuvIYXw7ZNLpApCZuvIYXzUl:6NLWpCZLYANLWpCZLYC

Score
9/10

Malware Config

Targets

    • Target

      a4976bd9b5beb2f8799f7e5ed975e640_NeikiAnalytics.exe

    • Size

      86KB

    • MD5

      a4976bd9b5beb2f8799f7e5ed975e640

    • SHA1

      fee71578c5ebe68d55edfb24bb7b8c0e9953168b

    • SHA256

      ee2bf95d5220c780441e271973a7f681f0af412bd12ba481371cb8d15ce7ad03

    • SHA512

      dfb63ac55620db8a528d6fcebc96099392c76f030b373a76a571b4ae1de2a3254819ece4006c23729a8eb3399f586a167b1f941836bc6e06658097078b6a652b

    • SSDEEP

      1536:W7ZNLpApCZuvIYXw7ZNLpApCZuvIYXzUl:6NLWpCZLYANLWpCZLYC

    Score
    9/10
    • Renames multiple (1403) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks