General

  • Target

    3ce5e577b81d85c7b5e1eec1de521cb0_NeikiAnalytics.exe

  • Size

    68KB

  • Sample

    240617-dnvd6awblr

  • MD5

    3ce5e577b81d85c7b5e1eec1de521cb0

  • SHA1

    0f7381e5e82fca25901dd02b2be750e2cdec9423

  • SHA256

    e41952c97db8288523d27961ccde96a70304413d9232500f312f0bda41ae707a

  • SHA512

    a1cf36d732887d3cab29ea677f3c8c5a0af51a91cfcba7f5d5c0daa288f236183fe2aac52fafd71f6d2891bf6d21111f14cabcc7205111c1d1487a3bdfd25c5e

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q87:fnyiQSoM

Score
9/10

Malware Config

Targets

    • Target

      3ce5e577b81d85c7b5e1eec1de521cb0_NeikiAnalytics.exe

    • Size

      68KB

    • MD5

      3ce5e577b81d85c7b5e1eec1de521cb0

    • SHA1

      0f7381e5e82fca25901dd02b2be750e2cdec9423

    • SHA256

      e41952c97db8288523d27961ccde96a70304413d9232500f312f0bda41ae707a

    • SHA512

      a1cf36d732887d3cab29ea677f3c8c5a0af51a91cfcba7f5d5c0daa288f236183fe2aac52fafd71f6d2891bf6d21111f14cabcc7205111c1d1487a3bdfd25c5e

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q87:fnyiQSoM

    Score
    9/10
    • Renames multiple (3694) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks