dafbfc898ee0edd426c32e480b4c931474af04d15b29fec44dc07c3dcff5b234 | Triage

Sharing

General

Target

7ca0c037794d176ac91c690bab22787b_NeikiAnalytics.exe
Size

416KB
Sample

240520-lga1yadd83
MD5

7ca0c037794d176ac91c690bab22787b
SHA1

1572f8c284cd27a9ed2d28640d7dddbc3fe1537a
SHA256

dafbfc898ee0edd426c32e480b4c931474af04d15b29fec44dc07c3dcff5b234
SHA512

de09ebdbdcea493332afec7cda07beb2488dab7458ca7aaefda34817eda01ab731bb037eaff26dcddea0e3a8a2a74939d9a5c860b53d842012812bfde6bb6097
SSDEEP

6144:tyH7xOc6H5c6HcT66vlm+jjIYb1lftjtNSx59xq84rDbRXB/UAn8CQxenvyLa:taPb1ptfKn4vb1BMANce6+

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  7ca0c037794d176ac91c690bab22787b_NeikiAnalytics.exe
- Size
  
  416KB
- MD5
  
  7ca0c037794d176ac91c690bab22787b
- SHA1
  
  1572f8c284cd27a9ed2d28640d7dddbc3fe1537a
- SHA256
  
  dafbfc898ee0edd426c32e480b4c931474af04d15b29fec44dc07c3dcff5b234
- SHA512
  
  de09ebdbdcea493332afec7cda07beb2488dab7458ca7aaefda34817eda01ab731bb037eaff26dcddea0e3a8a2a74939d9a5c860b53d842012812bfde6bb6097
- SSDEEP
  
  6144:tyH7xOc6H5c6HcT66vlm+jjIYb1lftjtNSx59xq84rDbRXB/UAn8CQxenvyLa:taPb1ptfKn4vb1BMANce6+
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2