Overview

overview

9

Static

static

7

a1459c3e82...cs.exe

windows7-x64

9

a1459c3e82...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    a1459c3e82148f9507c722c27bdfc275114ad4500eff57a6f3c741f3298a6bda_NeikiAnalytics.exe

  • Size

    52KB

  • Sample

    240628-t6zdtswhlg

  • MD5

    7501a911a29403a97094493b01f5fc80

  • SHA1

    04718aecf02aad34bc03de5f8a69bc201e78d8f4

  • SHA256

    a1459c3e82148f9507c722c27bdfc275114ad4500eff57a6f3c741f3298a6bda

  • SHA512

    e8fa708d4bf4a4399bb68f6afa5dbcaaaa140408f97fd21112e9247371cdf80a3c965a1c0c11b9f775b8062c7ff395a3ce750bd813d6f4969d3fd0218713650f

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8IZCja0tnmmjfFjfPj6ja0tnmmjfFjfPjfYt:KQSo7Zg

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      a1459c3e82148f9507c722c27bdfc275114ad4500eff57a6f3c741f3298a6bda_NeikiAnalytics.exe

    • Size

      52KB

    • MD5

      7501a911a29403a97094493b01f5fc80

    • SHA1

      04718aecf02aad34bc03de5f8a69bc201e78d8f4

    • SHA256

      a1459c3e82148f9507c722c27bdfc275114ad4500eff57a6f3c741f3298a6bda

    • SHA512

      e8fa708d4bf4a4399bb68f6afa5dbcaaaa140408f97fd21112e9247371cdf80a3c965a1c0c11b9f775b8062c7ff395a3ce750bd813d6f4969d3fd0218713650f

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8IZCja0tnmmjfFjfPj6ja0tnmmjfFjfPjfYt:KQSo7Zg

    Score
    9/10
    ransomwareupx

    • Renames multiple (1023) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks