Overview

overview

9

Static

static

7

188fd0d539...cs.exe

windows7-x64

188fd0d539...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    188fd0d539aaa3e2e0214ba92c781aaf22a0600e5de865f12c38290dcb99118a_NeikiAnalytics.exe

  • Size

    58KB

  • Sample

    240625-a4ag5s1dkf

  • MD5

    b7e618fb6540a2ddc2605568e7fa2520

  • SHA1

    a4a6922e4b70d1c988169a824e19a489f43376b0

  • SHA256

    188fd0d539aaa3e2e0214ba92c781aaf22a0600e5de865f12c38290dcb99118a

  • SHA512

    f88ee0001299a0c412d6c21bc245183e5dddd092c87605391f0dea14830dcf1204ab1e5408bd046253209218da5263bf5e1c186aa921bec6c0d1bd2d6e5d81d8

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsJOLKtu:KQSohsUsUKs

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      188fd0d539aaa3e2e0214ba92c781aaf22a0600e5de865f12c38290dcb99118a_NeikiAnalytics.exe

    • Size

      58KB

    • MD5

      b7e618fb6540a2ddc2605568e7fa2520

    • SHA1

      a4a6922e4b70d1c988169a824e19a489f43376b0

    • SHA256

      188fd0d539aaa3e2e0214ba92c781aaf22a0600e5de865f12c38290dcb99118a

    • SHA512

      f88ee0001299a0c412d6c21bc245183e5dddd092c87605391f0dea14830dcf1204ab1e5408bd046253209218da5263bf5e1c186aa921bec6c0d1bd2d6e5d81d8

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsJOLKtu:KQSohsUsUKs

    Score
    9/10
    ransomwareupx

    • Renames multiple (5188) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks