Overview

overview

9

Static

static

7

34e5842e0e...cs.exe

windows7-x64

9

34e5842e0e...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    34e5842e0e777ae9b0bfa81bc17ada807236211c89cbfdf19f24f1b49c80cbc1_NeikiAnalytics.exe

  • Size

    83KB

  • Sample

    240701-eye8nawdkc

  • MD5

    df06ce99cf10082874fa001ef78d5010

  • SHA1

    09689be57a8663e152da587c6f52081c04538cc3

  • SHA256

    34e5842e0e777ae9b0bfa81bc17ada807236211c89cbfdf19f24f1b49c80cbc1

  • SHA512

    d67e15674786a15c186a2dfe13a57a9c87f4c8b703c2edeb3377bff456a4f150dea1a7ea07a14be9453d974ae44a2e7aa6bc5c95cd9d0478b492135297d177e6

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zx5CX:fnyiQSon

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      34e5842e0e777ae9b0bfa81bc17ada807236211c89cbfdf19f24f1b49c80cbc1_NeikiAnalytics.exe

    • Size

      83KB

    • MD5

      df06ce99cf10082874fa001ef78d5010

    • SHA1

      09689be57a8663e152da587c6f52081c04538cc3

    • SHA256

      34e5842e0e777ae9b0bfa81bc17ada807236211c89cbfdf19f24f1b49c80cbc1

    • SHA512

      d67e15674786a15c186a2dfe13a57a9c87f4c8b703c2edeb3377bff456a4f150dea1a7ea07a14be9453d974ae44a2e7aa6bc5c95cd9d0478b492135297d177e6

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zx5CX:fnyiQSon

    Score
    9/10
    ransomwareupx

    • Renames multiple (3497) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks