bb75ea7a8c69a14465749fbf4c4be6fa57f8586a55545da39f55fc256a163630 | Triage

Sharing

General

Target

8b1ac1556360d196b73948ca8a80ea60_NeikiAnalytics
Size

28KB
Sample

240511-gemvhage5s
MD5

8b1ac1556360d196b73948ca8a80ea60
SHA1

0e76dec75a596fd1e53e52ecdaa559baab67974c
SHA256

bb75ea7a8c69a14465749fbf4c4be6fa57f8586a55545da39f55fc256a163630
SHA512

059040d6e58b5720088457ecd5d7ac4208021da9bb2168220a4a377482fd18c96106e35d49f91384d348e19a9c54d308887b4e1af0035b73005e578ff2b7662a
SSDEEP

768:PVEHJqjHyGvwFylDpulVSQJrE/2QmlCYZU0mP:PH2nylslwHCCLX

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  8b1ac1556360d196b73948ca8a80ea60_NeikiAnalytics
- Size
  
  28KB
- MD5
  
  8b1ac1556360d196b73948ca8a80ea60
- SHA1
  
  0e76dec75a596fd1e53e52ecdaa559baab67974c
- SHA256
  
  bb75ea7a8c69a14465749fbf4c4be6fa57f8586a55545da39f55fc256a163630
- SHA512
  
  059040d6e58b5720088457ecd5d7ac4208021da9bb2168220a4a377482fd18c96106e35d49f91384d348e19a9c54d308887b4e1af0035b73005e578ff2b7662a
- SSDEEP
  
  768:PVEHJqjHyGvwFylDpulVSQJrE/2QmlCYZU0mP:PH2nylslwHCCLX
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2