86a120c521052a79c79c8342740d684ad253275d20b5d2907df3325d89fc83a9 | Triage

Sharing

General

Target

251dd29c9295e8ed609d6ffb4f7c97e0_NeikiAnalytics
Size

1.6MB
Sample

240511-wj8p4ada97
MD5

251dd29c9295e8ed609d6ffb4f7c97e0
SHA1

671b1d71df355c0e9e1b14a6fb044fbb1edda459
SHA256

86a120c521052a79c79c8342740d684ad253275d20b5d2907df3325d89fc83a9
SHA512

81190f4facefbc2bc093ca3dfca9d7852fff96d35a8531f5c2d8a6875e9845048257bd058352182239430422a85bf58aa9c9892582b2f2906311cc7014bcc84f
SSDEEP

24576:+b7KFij7y5u4Laq+hlrYqr7OeTYyrNig6XhSAfrkVVWMEXU8b8wOoWFwT:+MijoaPOeTzH6x5oVTEXwwODFwT

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  251dd29c9295e8ed609d6ffb4f7c97e0_NeikiAnalytics
- Size
  
  1.6MB
- MD5
  
  251dd29c9295e8ed609d6ffb4f7c97e0
- SHA1
  
  671b1d71df355c0e9e1b14a6fb044fbb1edda459
- SHA256
  
  86a120c521052a79c79c8342740d684ad253275d20b5d2907df3325d89fc83a9
- SHA512
  
  81190f4facefbc2bc093ca3dfca9d7852fff96d35a8531f5c2d8a6875e9845048257bd058352182239430422a85bf58aa9c9892582b2f2906311cc7014bcc84f
- SSDEEP
  
  24576:+b7KFij7y5u4Laq+hlrYqr7OeTYyrNig6XhSAfrkVVWMEXU8b8wOoWFwT:+MijoaPOeTzH6x5oVTEXwwODFwT
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2