Overview

overview

9

Static

static

3

068d07f003...cs.exe

windows7-x64

9

068d07f003...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    068d07f0032ff8a73ce13421ff564e453beefb6e6d72776f8462af5d717f46ba_NeikiAnalytics.exe

  • Size

    33KB

  • Sample

    240619-zhm9jsvfrm

  • MD5

    8ba8947a0adfbc72ed9bcebc2ffa8570

  • SHA1

    19c2cedf8051e0801b37a38836fd10957c1758fc

  • SHA256

    068d07f0032ff8a73ce13421ff564e453beefb6e6d72776f8462af5d717f46ba

  • SHA512

    28fac62bb4002f11f6ff40c360c9dfb661b3521e51ad71f594a8402f70563cce525b0e40d8386486070309952936793ca9d1a67ba76476bafbb152ea598dda43

  • SSDEEP

    768:W7BlpppARFbhiroT+Oi6JQgOiJfoT+Oi6JQgOiJJ:W7ZppApi+g7go

Score
9/10
ransomware

Malware Config

Targets

    • Target

      068d07f0032ff8a73ce13421ff564e453beefb6e6d72776f8462af5d717f46ba_NeikiAnalytics.exe

    • Size

      33KB

    • MD5

      8ba8947a0adfbc72ed9bcebc2ffa8570

    • SHA1

      19c2cedf8051e0801b37a38836fd10957c1758fc

    • SHA256

      068d07f0032ff8a73ce13421ff564e453beefb6e6d72776f8462af5d717f46ba

    • SHA512

      28fac62bb4002f11f6ff40c360c9dfb661b3521e51ad71f594a8402f70563cce525b0e40d8386486070309952936793ca9d1a67ba76476bafbb152ea598dda43

    • SSDEEP

      768:W7BlpppARFbhiroT+Oi6JQgOiJfoT+Oi6JQgOiJJ:W7ZppApi+g7go

    Score
    9/10
    ransomware

    • Renames multiple (3826) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks