General

  • Target

    43fab8d3fe2de5460c3133e4cdda2900_NeikiAnalytics.exe

  • Size

    50KB

  • Sample

    240617-egrkcsxcnp

  • MD5

    43fab8d3fe2de5460c3133e4cdda2900

  • SHA1

    3fc8e634268a8d683cbc2c5f59eaac7a208ed8dc

  • SHA256

    8cc5207060c78b047d95b40d3c3bd339a4bedf02ee9466a67d5c934a416f33af

  • SHA512

    71402dca13f842cab55491f0e58edd73cee8a0a20685588e86f1aa2b4cc367889938e909f677236730d35d5a095bbaec277ac8bf7f8392e463245ea9692918b7

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAF+R:CTWn1++PJHJXA/OsIZfzc3/Q8OySUa

Score
9/10

Malware Config

Targets

    • Target

      43fab8d3fe2de5460c3133e4cdda2900_NeikiAnalytics.exe

    • Size

      50KB

    • MD5

      43fab8d3fe2de5460c3133e4cdda2900

    • SHA1

      3fc8e634268a8d683cbc2c5f59eaac7a208ed8dc

    • SHA256

      8cc5207060c78b047d95b40d3c3bd339a4bedf02ee9466a67d5c934a416f33af

    • SHA512

      71402dca13f842cab55491f0e58edd73cee8a0a20685588e86f1aa2b4cc367889938e909f677236730d35d5a095bbaec277ac8bf7f8392e463245ea9692918b7

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAF+R:CTWn1++PJHJXA/OsIZfzc3/Q8OySUa

    Score
    9/10
    • Renames multiple (3448) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks