Overview

overview

9

Static

static

7

864e65bd09...cs.exe

windows7-x64

9

864e65bd09...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    864e65bd099335304858d674ac54ac649fe70929d22a2a744baa5acdc80edde3_NeikiAnalytics.exe

  • Size

    81KB

  • Sample

    240628-fjdlyssclf

  • MD5

    84ecf71c2b35676e97eac026b794ca80

  • SHA1

    fe03336c3dc9ae5b94b3f0ae337d13beb20ae5a1

  • SHA256

    864e65bd099335304858d674ac54ac649fe70929d22a2a744baa5acdc80edde3

  • SHA512

    fbe3b76d3839866909ebace51362143420636ea4b9b262672e1e47c65b157516f0d88ae45170af697a476842313d5f105b9e56db47a1a3bebf57349fa6634d33

  • SSDEEP

    1536:a7ZyqaFAxTWH1++PJHJXA/OsIZfzc3/Q8Q8/8fCZQoQ3:enaypQSosknR3

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      864e65bd099335304858d674ac54ac649fe70929d22a2a744baa5acdc80edde3_NeikiAnalytics.exe

    • Size

      81KB

    • MD5

      84ecf71c2b35676e97eac026b794ca80

    • SHA1

      fe03336c3dc9ae5b94b3f0ae337d13beb20ae5a1

    • SHA256

      864e65bd099335304858d674ac54ac649fe70929d22a2a744baa5acdc80edde3

    • SHA512

      fbe3b76d3839866909ebace51362143420636ea4b9b262672e1e47c65b157516f0d88ae45170af697a476842313d5f105b9e56db47a1a3bebf57349fa6634d33

    • SSDEEP

      1536:a7ZyqaFAxTWH1++PJHJXA/OsIZfzc3/Q8Q8/8fCZQoQ3:enaypQSosknR3

    Score
    9/10
    ransomwareupx

    • Renames multiple (3534) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks