d489c206da7a2e142d9ca5f185c7db32e3fd1a856276485542f7a77a1f56be61 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4e27425149fe7c09b65c9859ca1dadd0_NeikiAnalytics.exe
Size

73KB
Sample

240516-2rjntsce86
MD5

4e27425149fe7c09b65c9859ca1dadd0
SHA1

e272fee3e02aac83402ad1e72093a225625a0418
SHA256

d489c206da7a2e142d9ca5f185c7db32e3fd1a856276485542f7a77a1f56be61
SHA512

52f9f1c56bf311a67000d38dc24105073628897bc55eb691c0b596eb1046771a5dbf6ce83c16dc9d2d8b0ea7d817e3456a619eaf70534b3d19737f50b0cbb8ea
SSDEEP

1536:5lrsicagdzn8K2ariPOcjk+XQuPVN72NMSRjqEE0:5JjcF8KfCOcjk+guPVjSRhE0

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  4e27425149fe7c09b65c9859ca1dadd0_NeikiAnalytics.exe
- Size
  
  73KB
- MD5
  
  4e27425149fe7c09b65c9859ca1dadd0
- SHA1
  
  e272fee3e02aac83402ad1e72093a225625a0418
- SHA256
  
  d489c206da7a2e142d9ca5f185c7db32e3fd1a856276485542f7a77a1f56be61
- SHA512
  
  52f9f1c56bf311a67000d38dc24105073628897bc55eb691c0b596eb1046771a5dbf6ce83c16dc9d2d8b0ea7d817e3456a619eaf70534b3d19737f50b0cbb8ea
- SSDEEP
  
  1536:5lrsicagdzn8K2ariPOcjk+XQuPVN72NMSRjqEE0:5JjcF8KfCOcjk+guPVjSRhE0
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2