0ee805579e3244f03af5c8e7e17dac5053b500078bc6f0de4410a19b5f747c40 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a81cd407f2a3a3f438771ec8014815d0_NeikiAnalytics
Size

34KB
Sample

240515-jqnbhsga36
MD5

a81cd407f2a3a3f438771ec8014815d0
SHA1

359b5b4bb4a29024c3d9a043729900fa71a5f5e3
SHA256

0ee805579e3244f03af5c8e7e17dac5053b500078bc6f0de4410a19b5f747c40
SHA512

5c0344350043779a658b7d8c11e6c967cd31c1f257c74ccbb0b84342e5ce9d43353fd49c91fc4d48dc6c66450c25e34abb2b1b348023bd5f19ceb701ad879d0a
SSDEEP

768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhy:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYS

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  a81cd407f2a3a3f438771ec8014815d0_NeikiAnalytics
- Size
  
  34KB
- MD5
  
  a81cd407f2a3a3f438771ec8014815d0
- SHA1
  
  359b5b4bb4a29024c3d9a043729900fa71a5f5e3
- SHA256
  
  0ee805579e3244f03af5c8e7e17dac5053b500078bc6f0de4410a19b5f747c40
- SHA512
  
  5c0344350043779a658b7d8c11e6c967cd31c1f257c74ccbb0b84342e5ce9d43353fd49c91fc4d48dc6c66450c25e34abb2b1b348023bd5f19ceb701ad879d0a
- SSDEEP
  
  768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhy:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYS
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2