Overview

overview

9

Static

static

7

3785ae298b...cs.exe

windows7-x64

9

3785ae298b...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3785ae298b5705c85c2aab05d6b9e22f7138f263dd86be8f5c86340380c783ee_NeikiAnalytics.exe

  • Size

    46KB

  • Sample

    240701-frt9nsxbmd

  • MD5

    9f3287f80135de41e9f562bdf2137460

  • SHA1

    669568a59c16b8161cebd53700e1dcb466531795

  • SHA256

    3785ae298b5705c85c2aab05d6b9e22f7138f263dd86be8f5c86340380c783ee

  • SHA512

    fdbad57f6983913717ba272c79484f0d325a2d67d722d2394ba2b5b569672c3cf076a9837848fd3eddee872d95e3b021bb2adc257b81d139a976992d54acca33

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFzi:CTWn1++PJHJXA/OsIZfzc3/Q8zxo

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      3785ae298b5705c85c2aab05d6b9e22f7138f263dd86be8f5c86340380c783ee_NeikiAnalytics.exe

    • Size

      46KB

    • MD5

      9f3287f80135de41e9f562bdf2137460

    • SHA1

      669568a59c16b8161cebd53700e1dcb466531795

    • SHA256

      3785ae298b5705c85c2aab05d6b9e22f7138f263dd86be8f5c86340380c783ee

    • SHA512

      fdbad57f6983913717ba272c79484f0d325a2d67d722d2394ba2b5b569672c3cf076a9837848fd3eddee872d95e3b021bb2adc257b81d139a976992d54acca33

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFzi:CTWn1++PJHJXA/OsIZfzc3/Q8zxo

    Score
    9/10
    ransomwareupx

    • Renames multiple (3473) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks