f80175b7e1940920bbac97a960ebeed8e7e3e03daae72367e5e7ce903b5c5f03 | Triage

Sharing

General

Target

9a8f898e0c3347c5121a5475b742c4b0_NeikiAnalytics
Size

168KB
Sample

240510-hwwpeach22
MD5

9a8f898e0c3347c5121a5475b742c4b0
SHA1

026f8286825fd68c7aec542538e4d282dee8bf1e
SHA256

f80175b7e1940920bbac97a960ebeed8e7e3e03daae72367e5e7ce903b5c5f03
SHA512

ef715a27b54242dc4a97d6086b7f3c50fda836a046fabcb5e92a6e890a27eacb51493046599c57931664f23d9dd116c99703864316998f51b77c62589d0be842
SSDEEP

192:pbOzawOs81elJHsc45CcRZOgtShcWaOT2QLrCqww4/CFxyNhoy5t:pbLwOs8AHsc4sMfwhKQLrow4/CFsrd

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  9a8f898e0c3347c5121a5475b742c4b0_NeikiAnalytics
- Size
  
  168KB
- MD5
  
  9a8f898e0c3347c5121a5475b742c4b0
- SHA1
  
  026f8286825fd68c7aec542538e4d282dee8bf1e
- SHA256
  
  f80175b7e1940920bbac97a960ebeed8e7e3e03daae72367e5e7ce903b5c5f03
- SHA512
  
  ef715a27b54242dc4a97d6086b7f3c50fda836a046fabcb5e92a6e890a27eacb51493046599c57931664f23d9dd116c99703864316998f51b77c62589d0be842
- SSDEEP
  
  192:pbOzawOs81elJHsc45CcRZOgtShcWaOT2QLrCqww4/CFxyNhoy5t:pbLwOs8AHsc4sMfwhKQLrow4/CFsrd
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2