Overview

overview

7

Static

static

3

728c0520e9...cs.exe

windows7-x64

7

728c0520e9...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    728c0520e9525879c09caabd0dbe0c00_NeikiAnalytics.exe

  • Size

    2.2MB

  • Sample

    240523-cc56vahe7w

  • MD5

    728c0520e9525879c09caabd0dbe0c00

  • SHA1

    279903e6718f3659adac1f103028f615e2575e21

  • SHA256

    81e1fc3019e7d37096977ea66e03dd675132b66c48c740294af3d6bba278d61b

  • SHA512

    88f3ef7975eac94867486fc609890e8bd7c37939e331163f2b6c90cd78f0890bae44a7463ab2604613fd45947bd56ff1b2aa7649036a1cd4bbfb582237901fbc

  • SSDEEP

    49152:Wb3+2CbRquA/m2yL5zbfFiV+XenmE3/z7:Wb3+7oq2Vjnm8

Score
7/10
persistence

Malware Config

Targets

    • Target

      728c0520e9525879c09caabd0dbe0c00_NeikiAnalytics.exe

    • Size

      2.2MB

    • MD5

      728c0520e9525879c09caabd0dbe0c00

    • SHA1

      279903e6718f3659adac1f103028f615e2575e21

    • SHA256

      81e1fc3019e7d37096977ea66e03dd675132b66c48c740294af3d6bba278d61b

    • SHA512

      88f3ef7975eac94867486fc609890e8bd7c37939e331163f2b6c90cd78f0890bae44a7463ab2604613fd45947bd56ff1b2aa7649036a1cd4bbfb582237901fbc

    • SSDEEP

      49152:Wb3+2CbRquA/m2yL5zbfFiV+XenmE3/z7:Wb3+7oq2Vjnm8

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks