a3cda0bf8766732690af2cc98b3933858d74a48bcd62a053d66a180df9005316 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01b827d71aef7d291a6f49ccee673780_NeikiAnalytics
Size

5.9MB
Sample

240510-zrkvsahc3y
MD5

01b827d71aef7d291a6f49ccee673780
SHA1

0172a20b3b6ea35841801954aa0311a74013044d
SHA256

a3cda0bf8766732690af2cc98b3933858d74a48bcd62a053d66a180df9005316
SHA512

ed89349e82216ab51e0439518c1fb48dc490c2a222c8ea0adecc0d0d050de1f97082264a90344104ac95a12889ea7e571b59f55ceb26c15c07c231db37c6de82
SSDEEP

98304:kNYvy8h1+bpiU6rwb7DoPTXfXZ8TohuFFzgk/2ARV71PDl7x3UxjfI3YSxv:Pqg+bpiNrgDoPTvZ8To4S5ARVpDHSCh

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  01b827d71aef7d291a6f49ccee673780_NeikiAnalytics
- Size
  
  5.9MB
- MD5
  
  01b827d71aef7d291a6f49ccee673780
- SHA1
  
  0172a20b3b6ea35841801954aa0311a74013044d
- SHA256
  
  a3cda0bf8766732690af2cc98b3933858d74a48bcd62a053d66a180df9005316
- SHA512
  
  ed89349e82216ab51e0439518c1fb48dc490c2a222c8ea0adecc0d0d050de1f97082264a90344104ac95a12889ea7e571b59f55ceb26c15c07c231db37c6de82
- SSDEEP
  
  98304:kNYvy8h1+bpiU6rwb7DoPTXfXZ8TohuFFzgk/2ARV71PDl7x3UxjfI3YSxv:Pqg+bpiNrgDoPTvZ8To4S5ARVpDHSCh
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2