49bb0e1fde956f70fd06d4a2743aab5f5df1586a2f1d2c0e6973e00362be9808 | Triage

Sharing

General

Target

ba4f070e1b6570ab64a012d03f2e8d60_NeikiAnalytics
Size

32KB
Sample

240513-qs85bshd85
MD5

ba4f070e1b6570ab64a012d03f2e8d60
SHA1

1a0f2eb40ee67f785b46bafc9180a1afd7d6f0a3
SHA256

49bb0e1fde956f70fd06d4a2743aab5f5df1586a2f1d2c0e6973e00362be9808
SHA512

b7bf61d23bff528ac2fd31d74ecd38839869932f3d9136105b9c729857c6332af6a89be96102985397db513bd84061fa20ee75ddb53c2f6a3c122233d5981a00
SSDEEP

768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhC:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYi

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  ba4f070e1b6570ab64a012d03f2e8d60_NeikiAnalytics
- Size
  
  32KB
- MD5
  
  ba4f070e1b6570ab64a012d03f2e8d60
- SHA1
  
  1a0f2eb40ee67f785b46bafc9180a1afd7d6f0a3
- SHA256
  
  49bb0e1fde956f70fd06d4a2743aab5f5df1586a2f1d2c0e6973e00362be9808
- SHA512
  
  b7bf61d23bff528ac2fd31d74ecd38839869932f3d9136105b9c729857c6332af6a89be96102985397db513bd84061fa20ee75ddb53c2f6a3c122233d5981a00
- SSDEEP
  
  768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhC:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYi
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2