General

  • Target

    365d550e769b6ddfa31646a947e31f7fd0fa157af03979e096f47a7cc65be02f_NeikiAnalytics.exe

  • Size

    89KB

  • Sample

    240620-fjpn8azdmg

  • MD5

    eb3cf90a7ba663388609ee4ff7380770

  • SHA1

    469e6636fc8cf4c4e32890145b4a56be33e97e47

  • SHA256

    365d550e769b6ddfa31646a947e31f7fd0fa157af03979e096f47a7cc65be02f

  • SHA512

    9942c8e93b0be51b557144babd7a6016b93191f3ef07b7dbc931a44623c3ddcaa667cf40fd722773a9c3eb810a27e8bb2176eb3d81a4b1f467b8ddfe9ce4ae68

  • SSDEEP

    768:W7BlpNLpARFbhblkYlkuvIYFde7BlpNLpARFbhblkYlkuvIYFdjcTco:W7ZNLpApCZuvIYXe7ZNLpApCZuvIYXe

Score
9/10

Malware Config

Targets

    • Target

      365d550e769b6ddfa31646a947e31f7fd0fa157af03979e096f47a7cc65be02f_NeikiAnalytics.exe

    • Size

      89KB

    • MD5

      eb3cf90a7ba663388609ee4ff7380770

    • SHA1

      469e6636fc8cf4c4e32890145b4a56be33e97e47

    • SHA256

      365d550e769b6ddfa31646a947e31f7fd0fa157af03979e096f47a7cc65be02f

    • SHA512

      9942c8e93b0be51b557144babd7a6016b93191f3ef07b7dbc931a44623c3ddcaa667cf40fd722773a9c3eb810a27e8bb2176eb3d81a4b1f467b8ddfe9ce4ae68

    • SSDEEP

      768:W7BlpNLpARFbhblkYlkuvIYFde7BlpNLpARFbhblkYlkuvIYFdjcTco:W7ZNLpApCZuvIYXe7ZNLpApCZuvIYXe

    Score
    9/10
    • Renames multiple (4858) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks