1c9a8a7e8889631a58f25e0941852067f1cb0cb0f997e98cdd66a9bf5f560546 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a652c4c01ee6c67f06335d8d53ecee40_NeikiAnalytics.exe
Size

986KB
Sample

240517-ezvpqshc93
MD5

a652c4c01ee6c67f06335d8d53ecee40
SHA1

b5ce90d9debf34a08db4d170136997301ad3b817
SHA256

1c9a8a7e8889631a58f25e0941852067f1cb0cb0f997e98cdd66a9bf5f560546
SHA512

372c24b55fbf461818c9ce10443a2811e00b367e3e80b039a862b0a3f9a303121498faa42ad975990378cf26fe2bac0420355dcfc0a7b7d6855d1db47c70b18e
SSDEEP

3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjwA2i1vP2i1a1X:Hha8iAx+1zwjJHd6vB/ANMQAnHtQT

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  a652c4c01ee6c67f06335d8d53ecee40_NeikiAnalytics.exe
- Size
  
  986KB
- MD5
  
  a652c4c01ee6c67f06335d8d53ecee40
- SHA1
  
  b5ce90d9debf34a08db4d170136997301ad3b817
- SHA256
  
  1c9a8a7e8889631a58f25e0941852067f1cb0cb0f997e98cdd66a9bf5f560546
- SHA512
  
  372c24b55fbf461818c9ce10443a2811e00b367e3e80b039a862b0a3f9a303121498faa42ad975990378cf26fe2bac0420355dcfc0a7b7d6855d1db47c70b18e
- SSDEEP
  
  3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjwA2i1vP2i1a1X:Hha8iAx+1zwjJHd6vB/ANMQAnHtQT
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2