Overview

overview

9

Static

static

3

32b533259f...cs.exe

windows7-x64

9

32b533259f...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    32b533259fe74c04a6a8ea5394dc7d6280518ca7df4c1c452934750b0e23dbb2_NeikiAnalytics.exe

  • Size

    99KB

  • Sample

    240701-d7284sycnl

  • MD5

    3b4582a2c51c3c002a9ff035b96cd060

  • SHA1

    1f4768fd9fbf8884ddfe2f347662cb2ab21167a0

  • SHA256

    32b533259fe74c04a6a8ea5394dc7d6280518ca7df4c1c452934750b0e23dbb2

  • SHA512

    466abdaaff58c3d1c77a57c2d99fc3fc1fd74b80af713fecfe09827b2ba754fe9ec3001393cc18c75f170e1ebb2dfd179c2e66a309faa0967930efd76f37374d

  • SSDEEP

    768:/7BlpQpARFbhtF1XxXEhk8W/47BlpQpARFbhtF1XxXEhk8W/DbK:/7ZQpAp9XxXEhl7ZQpAp9XxXEht

Score
9/10
ransomware

Malware Config

Targets

    • Target

      32b533259fe74c04a6a8ea5394dc7d6280518ca7df4c1c452934750b0e23dbb2_NeikiAnalytics.exe

    • Size

      99KB

    • MD5

      3b4582a2c51c3c002a9ff035b96cd060

    • SHA1

      1f4768fd9fbf8884ddfe2f347662cb2ab21167a0

    • SHA256

      32b533259fe74c04a6a8ea5394dc7d6280518ca7df4c1c452934750b0e23dbb2

    • SHA512

      466abdaaff58c3d1c77a57c2d99fc3fc1fd74b80af713fecfe09827b2ba754fe9ec3001393cc18c75f170e1ebb2dfd179c2e66a309faa0967930efd76f37374d

    • SSDEEP

      768:/7BlpQpARFbhtF1XxXEhk8W/47BlpQpARFbhtF1XxXEhk8W/DbK:/7ZQpAp9XxXEhl7ZQpAp9XxXEht

    Score
    9/10
    ransomware

    • Renames multiple (4230) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks