04b72be64d76f7117951916ac24f7ff70ae13572569210c56043ab7a12504629 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

57cc92e54fd8520c6c2f19ada8ee88b0_NeikiAnalytics.exe
Size

1.2MB
Sample

240519-26p46agb68
MD5

57cc92e54fd8520c6c2f19ada8ee88b0
SHA1

ddb2d0b5890afba481e6deb4f5937b63f6a7a11f
SHA256

04b72be64d76f7117951916ac24f7ff70ae13572569210c56043ab7a12504629
SHA512

8a33c6d20d8882b8f7524cf9ddc9061ced7a93ef64df5142578a78ccb6d1f40c3282a73b3ea15aa1779acc56a9f9874950a63462a1075c71100acfd8b855ef00
SSDEEP

24576:DPTjwnkBkWosTY2wlrM5lsoa/ZS2Grh77Lv+f6T8QnskbdW:DPTjiW/oAHvsogFGrhbq4dW

Score

7^/10

Malware Config

Targets

- Target
  
  57cc92e54fd8520c6c2f19ada8ee88b0_NeikiAnalytics.exe
- Size
  
  1.2MB
- MD5
  
  57cc92e54fd8520c6c2f19ada8ee88b0
- SHA1
  
  ddb2d0b5890afba481e6deb4f5937b63f6a7a11f
- SHA256
  
  04b72be64d76f7117951916ac24f7ff70ae13572569210c56043ab7a12504629
- SHA512
  
  8a33c6d20d8882b8f7524cf9ddc9061ced7a93ef64df5142578a78ccb6d1f40c3282a73b3ea15aa1779acc56a9f9874950a63462a1075c71100acfd8b855ef00
- SSDEEP
  
  24576:DPTjwnkBkWosTY2wlrM5lsoa/ZS2Grh77Lv+f6T8QnskbdW:DPTjiW/oAHvsogFGrhbq4dW
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2