Overview

overview

10

Static

static

3

60bdb32f61...cs.exe

windows7-x64

10

60bdb32f61...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    60bdb32f61de9309fe7c6e45399f5070_NeikiAnalytics.exe

  • Size

    64KB

  • Sample

    240523-amsx6aee4s

  • MD5

    60bdb32f61de9309fe7c6e45399f5070

  • SHA1

    833ea715ca19b1668d1b042f53eb408d0374fb62

  • SHA256

    7d89ad174a665b90e9a85f50e7b35adc682c7980a838bb2078428abc7807d362

  • SHA512

    1980d7839d0b876074139306b4130748a1ec59c59cf8be1dcea4d579a566cca09d23471ea0313292810332c517b96bab72c464036a42eb38212af06e5b805520

  • SSDEEP

    1536:nzN3izXzN8sWVCcGkls3gDbZbSTifOieO6XKhbMbt2:zN3UGjQ+tnZ3fONO6Xjt2

Score
10/10
persistence

Malware Config

Targets

    • Target

      60bdb32f61de9309fe7c6e45399f5070_NeikiAnalytics.exe

    • Size

      64KB

    • MD5

      60bdb32f61de9309fe7c6e45399f5070

    • SHA1

      833ea715ca19b1668d1b042f53eb408d0374fb62

    • SHA256

      7d89ad174a665b90e9a85f50e7b35adc682c7980a838bb2078428abc7807d362

    • SHA512

      1980d7839d0b876074139306b4130748a1ec59c59cf8be1dcea4d579a566cca09d23471ea0313292810332c517b96bab72c464036a42eb38212af06e5b805520

    • SSDEEP

      1536:nzN3izXzN8sWVCcGkls3gDbZbSTifOieO6XKhbMbt2:zN3UGjQ+tnZ3fONO6Xjt2

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks