Overview

overview

9

Static

static

3

147222d979...cs.exe

windows7-x64

9

147222d979...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    147222d97977b1e844e01051ee391f1b1b89114e24ecda322846db82eac17199_NeikiAnalytics.exe

  • Size

    65KB

  • Sample

    240630-yrh6hsxcmn

  • MD5

    ee745a9ec6b2fc4ff4a91e59b78ae620

  • SHA1

    6ea95444b92e30c2f7c291442a972a60b2863020

  • SHA256

    147222d97977b1e844e01051ee391f1b1b89114e24ecda322846db82eac17199

  • SHA512

    6f232571e575bfd499fe32779ca945b0008fa38d4ce4da64d748855d858e39491ff2770c3b58335142262b841566e94173b0afc074c421c1104d0935c06a7abe

  • SSDEEP

    384:GBt7Br5xjL9AgA71FbhvuNBN2TQ1nrdBt7Br5xjL9AgA71FbhvuNBN2TQ1nrA:W7BlpppARFbhknrN7BlpppARFbhknrA

Score
9/10
ransomware

Malware Config

Targets

    • Target

      147222d97977b1e844e01051ee391f1b1b89114e24ecda322846db82eac17199_NeikiAnalytics.exe

    • Size

      65KB

    • MD5

      ee745a9ec6b2fc4ff4a91e59b78ae620

    • SHA1

      6ea95444b92e30c2f7c291442a972a60b2863020

    • SHA256

      147222d97977b1e844e01051ee391f1b1b89114e24ecda322846db82eac17199

    • SHA512

      6f232571e575bfd499fe32779ca945b0008fa38d4ce4da64d748855d858e39491ff2770c3b58335142262b841566e94173b0afc074c421c1104d0935c06a7abe

    • SSDEEP

      384:GBt7Br5xjL9AgA71FbhvuNBN2TQ1nrdBt7Br5xjL9AgA71FbhvuNBN2TQ1nrA:W7BlpppARFbhknrN7BlpppARFbhknrA

    Score
    9/10
    ransomware

    • Renames multiple (136) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks