7f4da1e130c7ee19f093379a203e22459f49e1476c4f2db4a8526cb37cbf2b3e | Triage

Sharing

General

Target

cf1ec15f2b7be53f2704a57320abf1d0_NeikiAnalytics
Size

1.5MB
Sample

240514-vwhh1agc32
MD5

cf1ec15f2b7be53f2704a57320abf1d0
SHA1

f0c3afc997f858bdd1bd8c75597522a1feb61710
SHA256

7f4da1e130c7ee19f093379a203e22459f49e1476c4f2db4a8526cb37cbf2b3e
SHA512

cb35463c2279a979e5b011da407504be3d8412f907c6ae14661209d0660678f61582d242699ad32f039e26cc1ad94e80874d30d50dd2ad91e0d8471211a76ff8
SSDEEP

49152:G9pvmaJgLDev53L8/EHosBy3AhzQYuMcHOg:QOevN0SoUy3AhcjMcHV

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  cf1ec15f2b7be53f2704a57320abf1d0_NeikiAnalytics
- Size
  
  1.5MB
- MD5
  
  cf1ec15f2b7be53f2704a57320abf1d0
- SHA1
  
  f0c3afc997f858bdd1bd8c75597522a1feb61710
- SHA256
  
  7f4da1e130c7ee19f093379a203e22459f49e1476c4f2db4a8526cb37cbf2b3e
- SHA512
  
  cb35463c2279a979e5b011da407504be3d8412f907c6ae14661209d0660678f61582d242699ad32f039e26cc1ad94e80874d30d50dd2ad91e0d8471211a76ff8
- SSDEEP
  
  49152:G9pvmaJgLDev53L8/EHosBy3AhzQYuMcHOg:QOevN0SoUy3AhcjMcHV
Score

8^/10

discovery
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2