07c886327b0c7105ce251edaeb9117f8e8c470ee3f688ee05f4af6909a5ecb3b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2cf9ab7713c55080eae952f3331429c0_NeikiAnalytics.exe
Size

70KB
Sample

240517-zbad4shg84
MD5

2cf9ab7713c55080eae952f3331429c0
SHA1

c7cd0da1aaee6b5830633eb64a59c09eccf3d61e
SHA256

07c886327b0c7105ce251edaeb9117f8e8c470ee3f688ee05f4af6909a5ecb3b
SHA512

583e0f01d7e18200faaab94cd437eecd3fc7ee9d21fc19ca695d34c164e5a19d1b48e833c0d1d45ec22f92319bb197e19eb47e335029c555fe0cd7c01d8ed47d
SSDEEP

1536:5lrsicagdzn8K2ariPOcjk+XQuPVN72NMSRjqZ:5JjcF8KfCOcjk+guPVjSRS

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  2cf9ab7713c55080eae952f3331429c0_NeikiAnalytics.exe
- Size
  
  70KB
- MD5
  
  2cf9ab7713c55080eae952f3331429c0
- SHA1
  
  c7cd0da1aaee6b5830633eb64a59c09eccf3d61e
- SHA256
  
  07c886327b0c7105ce251edaeb9117f8e8c470ee3f688ee05f4af6909a5ecb3b
- SHA512
  
  583e0f01d7e18200faaab94cd437eecd3fc7ee9d21fc19ca695d34c164e5a19d1b48e833c0d1d45ec22f92319bb197e19eb47e335029c555fe0cd7c01d8ed47d
- SSDEEP
  
  1536:5lrsicagdzn8K2ariPOcjk+XQuPVN72NMSRjqZ:5JjcF8KfCOcjk+guPVjSRS
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2