Overview

overview

9

Static

static

7

36358619d6...cs.exe

windows7-x64

9

36358619d6...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    36358619d6d10332b11af45462311763ee893e495ce35b68843353d261b6b141_NeikiAnalytics.exe

  • Size

    57KB

  • Sample

    240701-fcw5qawgqd

  • MD5

    a3a2ea9c60c25a8f8ae5426643962bb0

  • SHA1

    dc26bd0395b6a1f9dca32297245896b6b9303989

  • SHA256

    36358619d6d10332b11af45462311763ee893e495ce35b68843353d261b6b141

  • SHA512

    d18e1e935f478ea9f09e5910568d79ecc7ce83bf791c6804c02a2233a5478ef0a6753bb4d909909fcd8a96a8e9ba8cc34c725e07c0620e89fc99da3a9c153724

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8zx5858oga:KQSoo858oga

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      36358619d6d10332b11af45462311763ee893e495ce35b68843353d261b6b141_NeikiAnalytics.exe

    • Size

      57KB

    • MD5

      a3a2ea9c60c25a8f8ae5426643962bb0

    • SHA1

      dc26bd0395b6a1f9dca32297245896b6b9303989

    • SHA256

      36358619d6d10332b11af45462311763ee893e495ce35b68843353d261b6b141

    • SHA512

      d18e1e935f478ea9f09e5910568d79ecc7ce83bf791c6804c02a2233a5478ef0a6753bb4d909909fcd8a96a8e9ba8cc34c725e07c0620e89fc99da3a9c153724

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8zx5858oga:KQSoo858oga

    Score
    9/10
    ransomwareupx

    • Renames multiple (3733) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks