3b3ff6e64abd1fc2112ef3a0e596e4177c4c7f687eac53b0ce0b8239ffdea258 | Triage

Sharing

General

Target

3a04e87930d75d19fedcde4ef832af70_NeikiAnalytics.exe
Size

64KB
Sample

240522-zshrtage46
MD5

3a04e87930d75d19fedcde4ef832af70
SHA1

df0551a303ea696b35a85ad9d08f541754e388be
SHA256

3b3ff6e64abd1fc2112ef3a0e596e4177c4c7f687eac53b0ce0b8239ffdea258
SHA512

0325ebd9fcab45a5810bbc63d1bbd1e590af4c0653093462e46c719680798c27172e0fdd523f5da69055e6b0dbe6504e4de17ceee128ea6116611febcaa74e51
SSDEEP

192:ObOzawOs81elJHsc45CcRZOgtSWcWaOT2QLrCqwKY04/CFxyNhoy5tR:ObLwOs8AHsc4sMfwIKQLrog4/CFsrdR

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  3a04e87930d75d19fedcde4ef832af70_NeikiAnalytics.exe
- Size
  
  64KB
- MD5
  
  3a04e87930d75d19fedcde4ef832af70
- SHA1
  
  df0551a303ea696b35a85ad9d08f541754e388be
- SHA256
  
  3b3ff6e64abd1fc2112ef3a0e596e4177c4c7f687eac53b0ce0b8239ffdea258
- SHA512
  
  0325ebd9fcab45a5810bbc63d1bbd1e590af4c0653093462e46c719680798c27172e0fdd523f5da69055e6b0dbe6504e4de17ceee128ea6116611febcaa74e51
- SSDEEP
  
  192:ObOzawOs81elJHsc45CcRZOgtSWcWaOT2QLrCqwKY04/CFxyNhoy5tR:ObLwOs8AHsc4sMfwIKQLrog4/CFsrdR
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2