b7b50c341ee5eb28bef1ee6eac8718425515abf0d6f5c25e11fb9258242f8ad2 | Triage

Sharing

General

Target

8babc9efb0a42713aa7ff1527883fa30_NeikiAnalytics
Size

2.0MB
Sample

240510-gz18mafd2v
MD5

8babc9efb0a42713aa7ff1527883fa30
SHA1

ece13965e09b37a627af62c2fbd46b4f446ce04c
SHA256

b7b50c341ee5eb28bef1ee6eac8718425515abf0d6f5c25e11fb9258242f8ad2
SHA512

4d67782d57f0ad51309ff45134992fe07da7d2f164d2766bba68471d159bbf5190895fc5f4c96f650baf3842162e231ccb239afb9d1d06fa0c6755559b06b3b2
SSDEEP

49152:eiVbpfNPyupenXN5s8g4HbExL5ISJSK6naPsD0gKQZ:T4XNSYHQQSJSKPF7i

Score

7^/10

Malware Config

Targets

- Target
  
  8babc9efb0a42713aa7ff1527883fa30_NeikiAnalytics
- Size
  
  2.0MB
- MD5
  
  8babc9efb0a42713aa7ff1527883fa30
- SHA1
  
  ece13965e09b37a627af62c2fbd46b4f446ce04c
- SHA256
  
  b7b50c341ee5eb28bef1ee6eac8718425515abf0d6f5c25e11fb9258242f8ad2
- SHA512
  
  4d67782d57f0ad51309ff45134992fe07da7d2f164d2766bba68471d159bbf5190895fc5f4c96f650baf3842162e231ccb239afb9d1d06fa0c6755559b06b3b2
- SSDEEP
  
  49152:eiVbpfNPyupenXN5s8g4HbExL5ISJSK6naPsD0gKQZ:T4XNSYHQQSJSKPF7i
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2