General

  • Target

    99ba615ba5ec8a854444f5087ac4b720_NeikiAnalytics.exe

  • Size

    84KB

  • Sample

    240617-q5a33atdmb

  • MD5

    99ba615ba5ec8a854444f5087ac4b720

  • SHA1

    139fc22044c61ca0392d3818d86660aae42b8894

  • SHA256

    5574b6f6bf727079a832b3a9d4809fbab22ea3d3cf9da407f567676024988ea1

  • SHA512

    08a063f9f9d3cd9ba0061afaf8169f68b6949900982b255bf7b84dfc4c396ae483bdf7ec49b2b9a2239a6b5fa427e97903ca065f50dd2009d0e427098222354e

  • SSDEEP

    768:W7BlpNLpARFbhblkYlkuvIYFd37BlpNLpARFbhblkYlkuvIYFdG:W7ZNLpApCZuvIYX37ZNLpApCZuvIYXG

Score
9/10

Malware Config

Targets

    • Target

      99ba615ba5ec8a854444f5087ac4b720_NeikiAnalytics.exe

    • Size

      84KB

    • MD5

      99ba615ba5ec8a854444f5087ac4b720

    • SHA1

      139fc22044c61ca0392d3818d86660aae42b8894

    • SHA256

      5574b6f6bf727079a832b3a9d4809fbab22ea3d3cf9da407f567676024988ea1

    • SHA512

      08a063f9f9d3cd9ba0061afaf8169f68b6949900982b255bf7b84dfc4c396ae483bdf7ec49b2b9a2239a6b5fa427e97903ca065f50dd2009d0e427098222354e

    • SSDEEP

      768:W7BlpNLpARFbhblkYlkuvIYFd37BlpNLpARFbhblkYlkuvIYFdG:W7ZNLpApCZuvIYX37ZNLpApCZuvIYXG

    Score
    9/10
    • Renames multiple (4944) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks