Overview

overview

10

Static

static

3

65ab601073...cs.exe

windows7-x64

10

65ab601073...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    65ab60107388ba173657142cb875b820_NeikiAnalytics.exe

  • Size

    64KB

  • Sample

    240523-a6harsfe58

  • MD5

    65ab60107388ba173657142cb875b820

  • SHA1

    448b1cbe87c0acf951aa894be4d119158cf9a6f7

  • SHA256

    6982b9f35316556e3ff56c7596878eeb87aa40c6b742d7eddc3a878c15ca8c94

  • SHA512

    d8214f79035eb18ed71e89399f865b8c32847bbd096e75e699fe47f67445619a73a5a13e22d4504d0e6b44e1c6de92f9ecf431b6362cdddc7ac95351193e55d2

  • SSDEEP

    768:qpQNwC3BET4QEfu0Ei8XxNDIN/3BEJwsrp:KeTqavEjDWpuhp

Score
10/10
evasion

Malware Config

Targets

    • Target

      65ab60107388ba173657142cb875b820_NeikiAnalytics.exe

    • Size

      64KB

    • MD5

      65ab60107388ba173657142cb875b820

    • SHA1

      448b1cbe87c0acf951aa894be4d119158cf9a6f7

    • SHA256

      6982b9f35316556e3ff56c7596878eeb87aa40c6b742d7eddc3a878c15ca8c94

    • SHA512

      d8214f79035eb18ed71e89399f865b8c32847bbd096e75e699fe47f67445619a73a5a13e22d4504d0e6b44e1c6de92f9ecf431b6362cdddc7ac95351193e55d2

    • SSDEEP

      768:qpQNwC3BET4QEfu0Ei8XxNDIN/3BEJwsrp:KeTqavEjDWpuhp

    Score
    10/10
    evasion

    • Modifies visibility of file extensions in Explorer

      evasion

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

1
T1564

Hidden Files and Directories

1
T1564.001

Modify Registry

2
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks