Overview

overview

9

Static

static

7

35890089b4...cs.exe

windows7-x64

9

35890089b4...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    35890089b47939e368a2949ba61e8c35dc21c2fd580718d92c6506d9706d0cca_NeikiAnalytics.exe

  • Size

    90KB

  • Sample

    240701-e5r6sszbrq

  • MD5

    68e913b13d50f12fd938b8cf579985e0

  • SHA1

    d6f12dc2916530aa9221ebed7ce07995f5b3e013

  • SHA256

    35890089b47939e368a2949ba61e8c35dc21c2fd580718d92c6506d9706d0cca

  • SHA512

    b454f1cf5bfe6a610f7209af21f35ea0ce8ba4a3497bedb0781b7bfce57d545d9253befddd4203e157a6c73b8c07b5a795794715cd8e514312f6d7eee77a6470

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsJOVYd7n97nF:fnyiQSohsUsKY5ZF

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      35890089b47939e368a2949ba61e8c35dc21c2fd580718d92c6506d9706d0cca_NeikiAnalytics.exe

    • Size

      90KB

    • MD5

      68e913b13d50f12fd938b8cf579985e0

    • SHA1

      d6f12dc2916530aa9221ebed7ce07995f5b3e013

    • SHA256

      35890089b47939e368a2949ba61e8c35dc21c2fd580718d92c6506d9706d0cca

    • SHA512

      b454f1cf5bfe6a610f7209af21f35ea0ce8ba4a3497bedb0781b7bfce57d545d9253befddd4203e157a6c73b8c07b5a795794715cd8e514312f6d7eee77a6470

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsJOVYd7n97nF:fnyiQSohsUsKY5ZF

    Score
    9/10
    ransomwareupx

    • Renames multiple (3454) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks