9866cac1f6e55d05e346c3e8fc7137217eb201a37e6efa19c942997a93ff3e6c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb16f5bc81fd6495485ea78392387d90_NeikiAnalytics
Size

90KB
Sample

240513-q51zgsab84
MD5

bb16f5bc81fd6495485ea78392387d90
SHA1

f0e6f4a6b57dd145f3552c2ba4d2620e25e0e8dc
SHA256

9866cac1f6e55d05e346c3e8fc7137217eb201a37e6efa19c942997a93ff3e6c
SHA512

8e6e0427d83305a58ebe3721aa390c6b328f0eef107f2e6dbab38064881db15124ece0aab72a2beb557aa0d343363fe8341e103e715b2ac69d1b947e6886c073
SSDEEP

768:50w981IshKQLroV4/wQozzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzv:CEGI0oVlVunMxVS3c

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  bb16f5bc81fd6495485ea78392387d90_NeikiAnalytics
- Size
  
  90KB
- MD5
  
  bb16f5bc81fd6495485ea78392387d90
- SHA1
  
  f0e6f4a6b57dd145f3552c2ba4d2620e25e0e8dc
- SHA256
  
  9866cac1f6e55d05e346c3e8fc7137217eb201a37e6efa19c942997a93ff3e6c
- SHA512
  
  8e6e0427d83305a58ebe3721aa390c6b328f0eef107f2e6dbab38064881db15124ece0aab72a2beb557aa0d343363fe8341e103e715b2ac69d1b947e6886c073
- SSDEEP
  
  768:50w981IshKQLroV4/wQozzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzv:CEGI0oVlVunMxVS3c
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2