Overview

overview

9

Static

static

3

0b85416e03...cs.exe

windows7-x64

9

0b85416e03...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    0b85416e03d53bf85fe4fcc2a8da0c347a37d469fb210689f1499d9045f204a2_NeikiAnalytics.exe

  • Size

    96KB

  • Sample

    240624-2fvlysycrp

  • MD5

    4cd604d090d504a52ddf4128b5e6ed30

  • SHA1

    7b83457548518e63a87010dbd393c59d523cd730

  • SHA256

    0b85416e03d53bf85fe4fcc2a8da0c347a37d469fb210689f1499d9045f204a2

  • SHA512

    e89406078eaec06c6879b85ece56ab60e108c7ecd377519d28791e0e4aa69a093a141f3c469af410ad970128a7e12e9dd1d83af2727b7c615f61def59739aa25

  • SSDEEP

    3072:9QWpze+eO888888888888888888888888888888888888888888888888888888+:Lpe+ekeq1E

Score
9/10
ransomware

Malware Config

Targets

    • Target

      0b85416e03d53bf85fe4fcc2a8da0c347a37d469fb210689f1499d9045f204a2_NeikiAnalytics.exe

    • Size

      96KB

    • MD5

      4cd604d090d504a52ddf4128b5e6ed30

    • SHA1

      7b83457548518e63a87010dbd393c59d523cd730

    • SHA256

      0b85416e03d53bf85fe4fcc2a8da0c347a37d469fb210689f1499d9045f204a2

    • SHA512

      e89406078eaec06c6879b85ece56ab60e108c7ecd377519d28791e0e4aa69a093a141f3c469af410ad970128a7e12e9dd1d83af2727b7c615f61def59739aa25

    • SSDEEP

      3072:9QWpze+eO888888888888888888888888888888888888888888888888888888+:Lpe+ekeq1E

    Score
    9/10
    ransomware

    • Renames multiple (564) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks