96feedfb096a2709331c7d5e57339ce075c96c9e08735db458c6ced6e5f4aa7d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c8a2ad720d6aa0e97913adf7cf6924f0_NeikiAnalytics
Size

1.2MB
Sample

240510-mwt8ssab4s
MD5

c8a2ad720d6aa0e97913adf7cf6924f0
SHA1

5886694a2b45dccb3bb0b1bedab667cf0745f333
SHA256

96feedfb096a2709331c7d5e57339ce075c96c9e08735db458c6ced6e5f4aa7d
SHA512

cf162f72df50ba467e695f14369a545803f8b2cd7d08b3b4c964c832f38dc7236cd9082b93c8331e4d372f29b3c2746ca379aaad6b24a89cb57fa77867e493bc
SSDEEP

24576:DHUWnrgzLvyIcL4bwWvja/ZSSVa/JXFrIJs77Lv+f6T88Oa:byAL4bZLgzVg7IJsbbOa

Score

7^/10

Malware Config

Targets

- Target
  
  c8a2ad720d6aa0e97913adf7cf6924f0_NeikiAnalytics
- Size
  
  1.2MB
- MD5
  
  c8a2ad720d6aa0e97913adf7cf6924f0
- SHA1
  
  5886694a2b45dccb3bb0b1bedab667cf0745f333
- SHA256
  
  96feedfb096a2709331c7d5e57339ce075c96c9e08735db458c6ced6e5f4aa7d
- SHA512
  
  cf162f72df50ba467e695f14369a545803f8b2cd7d08b3b4c964c832f38dc7236cd9082b93c8331e4d372f29b3c2746ca379aaad6b24a89cb57fa77867e493bc
- SSDEEP
  
  24576:DHUWnrgzLvyIcL4bwWvja/ZSSVa/JXFrIJs77Lv+f6T88Oa:byAL4bZLgzVg7IJsbbOa
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2