Overview

overview

9

Static

static

7

31f4d6d309...cs.exe

windows7-x64

9

31f4d6d309...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    31f4d6d3095f563d70d014a99777bf648e887ed1555a3da06890ccb415c99a74_NeikiAnalytics.exe

  • Size

    46KB

  • Sample

    240701-dzkdbsyaqn

  • MD5

    de72eff95a5ab7aeceda74dab4752350

  • SHA1

    1b8a83d809e6f1b4b3530ce94b123691e7763e2f

  • SHA256

    31f4d6d3095f563d70d014a99777bf648e887ed1555a3da06890ccb415c99a74

  • SHA512

    cd98f6d3ffcd56a6c958227687ba372357e9529f68596f8d263b800e18716f52141c83d969bd947850de09c4d4be324e2abfacfda380f2c366d99b9595312065

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFzh:CTWn1++PJHJXA/OsIZfzc3/Q8zxT

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      31f4d6d3095f563d70d014a99777bf648e887ed1555a3da06890ccb415c99a74_NeikiAnalytics.exe

    • Size

      46KB

    • MD5

      de72eff95a5ab7aeceda74dab4752350

    • SHA1

      1b8a83d809e6f1b4b3530ce94b123691e7763e2f

    • SHA256

      31f4d6d3095f563d70d014a99777bf648e887ed1555a3da06890ccb415c99a74

    • SHA512

      cd98f6d3ffcd56a6c958227687ba372357e9529f68596f8d263b800e18716f52141c83d969bd947850de09c4d4be324e2abfacfda380f2c366d99b9595312065

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFzh:CTWn1++PJHJXA/OsIZfzc3/Q8zxT

    Score
    9/10
    ransomwareupx

    • Renames multiple (200) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks