Overview

overview

9

Static

static

3

398486cff1...cs.exe

windows7-x64

9

398486cff1...cs.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    398486cff13d9fe5943c1e122391a3c181a386a3ce9a5099bd3a9ad34f6a3117_NeikiAnalytics.exe

  • Size

    51KB

  • Sample

    240701-gd11qs1clm

  • MD5

    f7011272e14703dd14e9f4b1895d4ed0

  • SHA1

    0e030ccdf30d3d25d37d20636bed9f6d7552cc5d

  • SHA256

    398486cff13d9fe5943c1e122391a3c181a386a3ce9a5099bd3a9ad34f6a3117

  • SHA512

    597c8ddcaf294a93426cbecf5195bc713c57b6875e830ab6f2505ef4061a762ac71460edb35d52750eb8932e04823cf47aaa8f42d885035f3809bc5f291d81e1

  • SSDEEP

    384:GBt7Br5xjLMuLAgA71FbhvDl3DG71ul3DG71XUmUIYFAHsi3:W7BlpNLpARFbhblkYlkuvIYFdi

Score
9/10
ransomware

Malware Config

Targets

    • Target

      398486cff13d9fe5943c1e122391a3c181a386a3ce9a5099bd3a9ad34f6a3117_NeikiAnalytics.exe

    • Size

      51KB

    • MD5

      f7011272e14703dd14e9f4b1895d4ed0

    • SHA1

      0e030ccdf30d3d25d37d20636bed9f6d7552cc5d

    • SHA256

      398486cff13d9fe5943c1e122391a3c181a386a3ce9a5099bd3a9ad34f6a3117

    • SHA512

      597c8ddcaf294a93426cbecf5195bc713c57b6875e830ab6f2505ef4061a762ac71460edb35d52750eb8932e04823cf47aaa8f42d885035f3809bc5f291d81e1

    • SSDEEP

      384:GBt7Br5xjLMuLAgA71FbhvDl3DG71ul3DG71XUmUIYFAHsi3:W7BlpNLpARFbhblkYlkuvIYFdi

    Score
    9/10
    ransomware

    • Renames multiple (3673) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks