Overview

overview

9

Static

static

7

839867d9f8...cs.exe

windows7-x64

9

839867d9f8...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    839867d9f87984017d3062ff8775f68c8d64ba85a654fcfdd5ab6cf4389d477a_NeikiAnalytics.exe

  • Size

    51KB

  • Sample

    240627-n42hhszerg

  • MD5

    ebd4409b4f662362623e342580908370

  • SHA1

    079c9a7dba1ee20db02f932e685df1176c669af2

  • SHA256

    839867d9f87984017d3062ff8775f68c8d64ba85a654fcfdd5ab6cf4389d477a

  • SHA512

    70aa8ec08a15d679752971ecdf583d620ad38ec47ccae4999538284bef44c8189f6d3736e25526a7c6aa646cec74cebd203b496fb8491016f4d88975e06d36c9

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAF+a:CTWn1++PJHJXA/OsIZfzc3/Q8OySUN

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      839867d9f87984017d3062ff8775f68c8d64ba85a654fcfdd5ab6cf4389d477a_NeikiAnalytics.exe

    • Size

      51KB

    • MD5

      ebd4409b4f662362623e342580908370

    • SHA1

      079c9a7dba1ee20db02f932e685df1176c669af2

    • SHA256

      839867d9f87984017d3062ff8775f68c8d64ba85a654fcfdd5ab6cf4389d477a

    • SHA512

      70aa8ec08a15d679752971ecdf583d620ad38ec47ccae4999538284bef44c8189f6d3736e25526a7c6aa646cec74cebd203b496fb8491016f4d88975e06d36c9

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAF+a:CTWn1++PJHJXA/OsIZfzc3/Q8OySUN

    Score
    9/10
    ransomwareupx

    • Renames multiple (3729) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks