General

  • Target

    32dd4810724690175711962ad901bb00_NeikiAnalytics.exe

  • Size

    117KB

  • Sample

    240617-ceefxaygrg

  • MD5

    32dd4810724690175711962ad901bb00

  • SHA1

    20e455101a3709c8c4a6dc5ee60ebf4b3a6a47c6

  • SHA256

    409cceea50a45534de2495f53e8218879a75efb4f75cb4c9eaa050b1d919931f

  • SHA512

    1fa51e08e15b6d7938d3950c5de3df76bd3de319ea1d9753f141b5e46f12a971b359b3b27549d8ff6428ceecc1c222a6cdbc175886cb86cff76c6ab72faaab8e

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8FTWn1++PJHJXA/OsIZfzc3/Q8Z:fnyiQSo2QSoC

Score
9/10

Malware Config

Targets

    • Target

      32dd4810724690175711962ad901bb00_NeikiAnalytics.exe

    • Size

      117KB

    • MD5

      32dd4810724690175711962ad901bb00

    • SHA1

      20e455101a3709c8c4a6dc5ee60ebf4b3a6a47c6

    • SHA256

      409cceea50a45534de2495f53e8218879a75efb4f75cb4c9eaa050b1d919931f

    • SHA512

      1fa51e08e15b6d7938d3950c5de3df76bd3de319ea1d9753f141b5e46f12a971b359b3b27549d8ff6428ceecc1c222a6cdbc175886cb86cff76c6ab72faaab8e

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8FTWn1++PJHJXA/OsIZfzc3/Q8Z:fnyiQSo2QSoC

    Score
    9/10
    • Renames multiple (3429) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks