General
-
Target
99ba615ba5ec8a854444f5087ac4b720_NeikiAnalytics.exe
-
Size
84KB
-
Sample
240617-q5a33atdmb
-
MD5
99ba615ba5ec8a854444f5087ac4b720
-
SHA1
139fc22044c61ca0392d3818d86660aae42b8894
-
SHA256
5574b6f6bf727079a832b3a9d4809fbab22ea3d3cf9da407f567676024988ea1
-
SHA512
08a063f9f9d3cd9ba0061afaf8169f68b6949900982b255bf7b84dfc4c396ae483bdf7ec49b2b9a2239a6b5fa427e97903ca065f50dd2009d0e427098222354e
-
SSDEEP
768:W7BlpNLpARFbhblkYlkuvIYFd37BlpNLpARFbhblkYlkuvIYFdG:W7ZNLpApCZuvIYX37ZNLpApCZuvIYXG
Static task
static1
Behavioral task
behavioral1
Sample
99ba615ba5ec8a854444f5087ac4b720_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
99ba615ba5ec8a854444f5087ac4b720_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
99ba615ba5ec8a854444f5087ac4b720_NeikiAnalytics.exe
-
Size
84KB
-
MD5
99ba615ba5ec8a854444f5087ac4b720
-
SHA1
139fc22044c61ca0392d3818d86660aae42b8894
-
SHA256
5574b6f6bf727079a832b3a9d4809fbab22ea3d3cf9da407f567676024988ea1
-
SHA512
08a063f9f9d3cd9ba0061afaf8169f68b6949900982b255bf7b84dfc4c396ae483bdf7ec49b2b9a2239a6b5fa427e97903ca065f50dd2009d0e427098222354e
-
SSDEEP
768:W7BlpNLpARFbhblkYlkuvIYFd37BlpNLpARFbhblkYlkuvIYFdG:W7ZNLpApCZuvIYX37ZNLpApCZuvIYXG
Score9/10-
Renames multiple (4944) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-