Overview

overview

9

Static

static

3

d4e267d48b...cs.exe

windows7-x64

9

d4e267d48b...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    d4e267d48b52c8026b8cebf7cb7bca80_NeikiAnalytics.exe

  • Size

    46KB

  • Sample

    240616-ewybfstaql

  • MD5

    d4e267d48b52c8026b8cebf7cb7bca80

  • SHA1

    ceb489253700f92adf5bcad38f9bb7e34be356ef

  • SHA256

    08b9e88b7b7193d5d1f49223dccd6e98b4372a5a2437838f7ff50908f634e852

  • SHA512

    1d22bb77b05a8bd0bb3131213808736f7dadcba3a3be78424df6eab15af9c28edb99d246be6c274ddf9362af6d85672cecc4dc37ac9282a4007131df71d7c8b0

  • SSDEEP

    384:GBt7Br5xjL9AgA71FbhvuNBNsjLKoWFKryoWFKrxxbNgbN7:W7BlpppARFbhWJQip

Score
9/10
ransomware

Malware Config

Targets

    • Target

      d4e267d48b52c8026b8cebf7cb7bca80_NeikiAnalytics.exe

    • Size

      46KB

    • MD5

      d4e267d48b52c8026b8cebf7cb7bca80

    • SHA1

      ceb489253700f92adf5bcad38f9bb7e34be356ef

    • SHA256

      08b9e88b7b7193d5d1f49223dccd6e98b4372a5a2437838f7ff50908f634e852

    • SHA512

      1d22bb77b05a8bd0bb3131213808736f7dadcba3a3be78424df6eab15af9c28edb99d246be6c274ddf9362af6d85672cecc4dc37ac9282a4007131df71d7c8b0

    • SSDEEP

      384:GBt7Br5xjL9AgA71FbhvuNBNsjLKoWFKryoWFKrxxbNgbN7:W7BlpppARFbhWJQip

    Score
    9/10
    ransomware

    • Renames multiple (3504) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks