Overview

overview

9

Static

static

7

4925bf63ff...cs.exe

windows7-x64

9

4925bf63ff...cs.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    4925bf63ff4e54db9365e3a8c3aa140b93ed89357b9d4a820668c3b32599742b_NeikiAnalytics.exe

  • Size

    66KB

  • Sample

    240701-l2rt7aycnj

  • MD5

    f3be0ce92dd8636fba8cbe372d4e8b40

  • SHA1

    5f0c1958a22da13c8b7858061ceaae257bb964e4

  • SHA256

    4925bf63ff4e54db9365e3a8c3aa140b93ed89357b9d4a820668c3b32599742b

  • SHA512

    1db897c6e37a830154d28a8dc54811616b37494f414a1034bff1ab2d24d84d83fc2f72a38cb58e0a134e2921b9e05fb009fd132738c2800088bb57fe28a27689

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwABT37CPKKdJJxdPO9Ot6K/K2Ch:V7Zf/FAxTWoJJ0TW7JJQOEK/Kt

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      4925bf63ff4e54db9365e3a8c3aa140b93ed89357b9d4a820668c3b32599742b_NeikiAnalytics.exe

    • Size

      66KB

    • MD5

      f3be0ce92dd8636fba8cbe372d4e8b40

    • SHA1

      5f0c1958a22da13c8b7858061ceaae257bb964e4

    • SHA256

      4925bf63ff4e54db9365e3a8c3aa140b93ed89357b9d4a820668c3b32599742b

    • SHA512

      1db897c6e37a830154d28a8dc54811616b37494f414a1034bff1ab2d24d84d83fc2f72a38cb58e0a134e2921b9e05fb009fd132738c2800088bb57fe28a27689

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwABT37CPKKdJJxdPO9Ot6K/K2Ch:V7Zf/FAxTWoJJ0TW7JJQOEK/Kt

    Score
    9/10
    ransomwareupx

    • Renames multiple (3516) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks