Overview

overview

6

Static

static

1

16889bd1c5...s.html

windows7-x64

1

16889bd1c5...s.html

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    16889bd1c5d8550f02172d537ec9acb0_NeikiAnalytics

  • Size

    6KB

  • Sample

    240522-eb3qfabb8t

  • MD5

    16889bd1c5d8550f02172d537ec9acb0

  • SHA1

    a786cc570edd2407d813fed59f85d89abd1eb6b1

  • SHA256

    b94a1de2f0c65b679881d4629f75f4afc183aeef1dd45742889866714147b2f6

  • SHA512

    4a59e29575d9f263e9cd234cf28a3f118b6e78588471dd9099b8e0b590c67302526e4ac92bfdc8c585a2b03fcbf4003e7ff06f6dcbd44fe1a222122ca1f2fd68

  • SSDEEP

    192:G5QnaWZZd8rS3WkztdULWvpMKtEWMa25KfgvVL+R599C3CmDryRrXP/YAMi2qAbO:G5QaWZZd8rS39ztdUavpMKtEWMa2AfgK

Score
6/10

Malware Config

Targets

    • Target

      16889bd1c5d8550f02172d537ec9acb0_NeikiAnalytics

    • Size

      6KB

    • MD5

      16889bd1c5d8550f02172d537ec9acb0

    • SHA1

      a786cc570edd2407d813fed59f85d89abd1eb6b1

    • SHA256

      b94a1de2f0c65b679881d4629f75f4afc183aeef1dd45742889866714147b2f6

    • SHA512

      4a59e29575d9f263e9cd234cf28a3f118b6e78588471dd9099b8e0b590c67302526e4ac92bfdc8c585a2b03fcbf4003e7ff06f6dcbd44fe1a222122ca1f2fd68

    • SSDEEP

      192:G5QnaWZZd8rS3WkztdULWvpMKtEWMa25KfgvVL+R599C3CmDryRrXP/YAMi2qAbO:G5QaWZZd8rS39ztdUavpMKtEWMa2AfgK

    Score
    6/10

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks