1d1a74d174fa4e9e2ad81fd60fde1116d3aa0226d22f0fead2c69a9cbdb72528 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9583e47db0fe1f0b2fa02fae2cf6c210_NeikiAnalytics
Size

34KB
Sample

240516-etfcvsbg85
MD5

9583e47db0fe1f0b2fa02fae2cf6c210
SHA1

d53a9875fbb3d21d9fc290e0a127605ff1583125
SHA256

1d1a74d174fa4e9e2ad81fd60fde1116d3aa0226d22f0fead2c69a9cbdb72528
SHA512

128cf49c9b1632268847d30470444309982fa725b8584653b74f009e4a3cd6c69041e7e8a060bb44534cedf00114d165a9b49e2f9bf54dcd6b8bd54a7ed19325
SSDEEP

768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhG:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYm

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  9583e47db0fe1f0b2fa02fae2cf6c210_NeikiAnalytics
- Size
  
  34KB
- MD5
  
  9583e47db0fe1f0b2fa02fae2cf6c210
- SHA1
  
  d53a9875fbb3d21d9fc290e0a127605ff1583125
- SHA256
  
  1d1a74d174fa4e9e2ad81fd60fde1116d3aa0226d22f0fead2c69a9cbdb72528
- SHA512
  
  128cf49c9b1632268847d30470444309982fa725b8584653b74f009e4a3cd6c69041e7e8a060bb44534cedf00114d165a9b49e2f9bf54dcd6b8bd54a7ed19325
- SSDEEP
  
  768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhG:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYm
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2