Overview

overview

10

Static

static

7

9c85992839...cs.exe

windows7-x64

10

9c85992839...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    9c85992839102f83d4e327a543cb9880_NeikiAnalytics.exe

  • Size

    371KB

  • Sample

    240517-d9lddafg31

  • MD5

    9c85992839102f83d4e327a543cb9880

  • SHA1

    a4f331cc7952af9504962f73ba5e06ce14dc30de

  • SHA256

    01723d7da00216d2929110cadfdecc67e750d4d347586ded6823ac2b13929b22

  • SHA512

    c567a197a0b53ecae3eeccf66c50636031b3c4c955da1d25e84650e5ff48852429cceebca44120cdddfa890492c0f59d1a437b8d0a1d16382f4c34e2f9d7785a

  • SSDEEP

    3072:BmVwRKCb75xkX+Sy37JhLomyxyFa656WexiQ+76U75xVErRt3Lo7m:BmVnE6+RUmGXWkYc

Score
10/10
evasionupx

Malware Config

Targets

    • Target

      9c85992839102f83d4e327a543cb9880_NeikiAnalytics.exe

    • Size

      371KB

    • MD5

      9c85992839102f83d4e327a543cb9880

    • SHA1

      a4f331cc7952af9504962f73ba5e06ce14dc30de

    • SHA256

      01723d7da00216d2929110cadfdecc67e750d4d347586ded6823ac2b13929b22

    • SHA512

      c567a197a0b53ecae3eeccf66c50636031b3c4c955da1d25e84650e5ff48852429cceebca44120cdddfa890492c0f59d1a437b8d0a1d16382f4c34e2f9d7785a

    • SSDEEP

      3072:BmVwRKCb75xkX+Sy37JhLomyxyFa656WexiQ+76U75xVErRt3Lo7m:BmVnE6+RUmGXWkYc

    Score
    10/10
    evasionupx

    • Modifies visibility of file extensions in Explorer

      evasion

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks