Overview

overview

9

Static

static

3

3709cc270b...cs.exe

windows7-x64

9

3709cc270b...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3709cc270b924a008b4891635032c58e25e3125c8c44a8007028d017232d2e26_NeikiAnalytics.exe

  • Size

    74KB

  • Sample

    240701-fk3x8szfnq

  • MD5

    d6e84aca5abafb46ef0260e552a32fb0

  • SHA1

    d693646586389395b606b4f270efa2d6543dd032

  • SHA256

    3709cc270b924a008b4891635032c58e25e3125c8c44a8007028d017232d2e26

  • SHA512

    8904f997a7f64072f836600ac106364220603ab01408df882279ee881e09e1b7688d5f3812e2ac4c6603734fadbedb838e68b9aba4b60a1772ec6ab5e6b1a50d

  • SSDEEP

    768:W7BlpppARFbhknr67BlpppARFbhknrCK/KR:W7ZppApkO7ZppApk2K/KR

Score
9/10
ransomware

Malware Config

Targets

    • Target

      3709cc270b924a008b4891635032c58e25e3125c8c44a8007028d017232d2e26_NeikiAnalytics.exe

    • Size

      74KB

    • MD5

      d6e84aca5abafb46ef0260e552a32fb0

    • SHA1

      d693646586389395b606b4f270efa2d6543dd032

    • SHA256

      3709cc270b924a008b4891635032c58e25e3125c8c44a8007028d017232d2e26

    • SHA512

      8904f997a7f64072f836600ac106364220603ab01408df882279ee881e09e1b7688d5f3812e2ac4c6603734fadbedb838e68b9aba4b60a1772ec6ab5e6b1a50d

    • SSDEEP

      768:W7BlpppARFbhknr67BlpppARFbhknrCK/KR:W7ZppApkO7ZppApk2K/KR

    Score
    9/10
    ransomware

    • Renames multiple (4715) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks