d8c6bf3c3543ce67ce6d4ce9d5a370214492f163faf92f70470512b2b48f464c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf1f5843bc4f27c5234866fc65cab5f0_NeikiAnalytics
Size

33KB
Sample

240516-jjhgpaah78
MD5

bf1f5843bc4f27c5234866fc65cab5f0
SHA1

e4f7c00d2e466827c7ce73bfb8c3e987c34a0238
SHA256

d8c6bf3c3543ce67ce6d4ce9d5a370214492f163faf92f70470512b2b48f464c
SHA512

ac0e2a64f7054907f1cd23c848b050f338e80afaf4c4a67f68b07f2e91addb6401f72c875d83f258d192f3f7bc0d43d7fdb79bbceeb69197f0a91441d037d71c
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhc:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wY8

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  bf1f5843bc4f27c5234866fc65cab5f0_NeikiAnalytics
- Size
  
  33KB
- MD5
  
  bf1f5843bc4f27c5234866fc65cab5f0
- SHA1
  
  e4f7c00d2e466827c7ce73bfb8c3e987c34a0238
- SHA256
  
  d8c6bf3c3543ce67ce6d4ce9d5a370214492f163faf92f70470512b2b48f464c
- SHA512
  
  ac0e2a64f7054907f1cd23c848b050f338e80afaf4c4a67f68b07f2e91addb6401f72c875d83f258d192f3f7bc0d43d7fdb79bbceeb69197f0a91441d037d71c
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhc:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wY8
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2