Overview

overview

10

Static

static

3

6db241bde7...cs.exe

windows7-x64

10

6db241bde7...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6db241bde78d5f77394d16a03ac62ec0_NeikiAnalytics.exe

  • Size

    80KB

  • Sample

    240523-bwxhdagf5x

  • MD5

    6db241bde78d5f77394d16a03ac62ec0

  • SHA1

    9f419967d352cbe7c1dfa973f333be6661aa8c03

  • SHA256

    7b401ab5dc4a7a23bd982359f408358b6361efd6fe9714fa0ce87e986ef3435e

  • SHA512

    f55f1b54200ea5172f75010695ff5ade72fa2e8b9ee8354d59a88b13191f0951bef11a39307b385d81c986805c3ed370c3224f1c556697ac0452e05142a7f614

  • SSDEEP

    1536:evfbHnJXw70PPtydSXfwPJfx2LfIaIZTJ+7LhkiB0:mpzPMoX4wfIaMU7ui

Score
10/10
persistence

Malware Config

Targets

    • Target

      6db241bde78d5f77394d16a03ac62ec0_NeikiAnalytics.exe

    • Size

      80KB

    • MD5

      6db241bde78d5f77394d16a03ac62ec0

    • SHA1

      9f419967d352cbe7c1dfa973f333be6661aa8c03

    • SHA256

      7b401ab5dc4a7a23bd982359f408358b6361efd6fe9714fa0ce87e986ef3435e

    • SHA512

      f55f1b54200ea5172f75010695ff5ade72fa2e8b9ee8354d59a88b13191f0951bef11a39307b385d81c986805c3ed370c3224f1c556697ac0452e05142a7f614

    • SSDEEP

      1536:evfbHnJXw70PPtydSXfwPJfx2LfIaIZTJ+7LhkiB0:mpzPMoX4wfIaMU7ui

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks