61a6c6afb5b2fb46cc08eda3878dfed2097da18d6cb0e7e52af412f88900c5f4 | Triage

Sharing

General

Target

0deae4359430d7d665c73c4adc371400_NeikiAnalytics.exe
Size

96KB
Sample

240521-zqsh8sab83
MD5

0deae4359430d7d665c73c4adc371400
SHA1

74c3bc3a70f3e8bcd57326c72f1dd8908a2594df
SHA256

61a6c6afb5b2fb46cc08eda3878dfed2097da18d6cb0e7e52af412f88900c5f4
SHA512

fc978fa7d3d1ed0b241dda7e61fff1f69e3b09084b8b7d2d21387212f3c5e408f3194f06a0d7ba282e1e837cd1e83604e71c1dfebe6a87c572fe7c2c2e34d466
SSDEEP

3072:/AoVl4lXin3m2GnNCyuaMeFg8kVQ+SvMuYsZZZNF01Lryhv1g1sE1EEEhdeEBvMN:4rwC

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  0deae4359430d7d665c73c4adc371400_NeikiAnalytics.exe
- Size
  
  96KB
- MD5
  
  0deae4359430d7d665c73c4adc371400
- SHA1
  
  74c3bc3a70f3e8bcd57326c72f1dd8908a2594df
- SHA256
  
  61a6c6afb5b2fb46cc08eda3878dfed2097da18d6cb0e7e52af412f88900c5f4
- SHA512
  
  fc978fa7d3d1ed0b241dda7e61fff1f69e3b09084b8b7d2d21387212f3c5e408f3194f06a0d7ba282e1e837cd1e83604e71c1dfebe6a87c572fe7c2c2e34d466
- SSDEEP
  
  3072:/AoVl4lXin3m2GnNCyuaMeFg8kVQ+SvMuYsZZZNF01Lryhv1g1sE1EEEhdeEBvMN:4rwC
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2