Overview

overview

10

Static

static

3

7521d0aba5...cs.exe

windows7-x64

10

7521d0aba5...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7521d0aba5155c6fe1d8765bb4193b00_NeikiAnalytics.exe

  • Size

    73KB

  • Sample

    240523-cmqh5sac67

  • MD5

    7521d0aba5155c6fe1d8765bb4193b00

  • SHA1

    a9618d9b2767fc799391e427c7e0ce8c3a0b5734

  • SHA256

    02431b68aeeeef47216c6e48b17c34d1d8bac099551a99ff64763e244232c440

  • SHA512

    dc94505a55f390c3cf0b2c9e9e42a2f4d837dc4f1f0244b0e2d7630858cbb8a68a1d5a16b0d996439c451a17bc230ba5b1e805f2b1dac755403eff0a2f88acdc

  • SSDEEP

    1536:cEbGO08KuNgNL3qQFEPEL00vuSENZFfDiMGh6gd5YMkhohBM:XM8Kuqp3qUEMiFriMo6eUAM

Score
10/10
persistence

Malware Config

Targets

    • Target

      7521d0aba5155c6fe1d8765bb4193b00_NeikiAnalytics.exe

    • Size

      73KB

    • MD5

      7521d0aba5155c6fe1d8765bb4193b00

    • SHA1

      a9618d9b2767fc799391e427c7e0ce8c3a0b5734

    • SHA256

      02431b68aeeeef47216c6e48b17c34d1d8bac099551a99ff64763e244232c440

    • SHA512

      dc94505a55f390c3cf0b2c9e9e42a2f4d837dc4f1f0244b0e2d7630858cbb8a68a1d5a16b0d996439c451a17bc230ba5b1e805f2b1dac755403eff0a2f88acdc

    • SSDEEP

      1536:cEbGO08KuNgNL3qQFEPEL00vuSENZFfDiMGh6gd5YMkhohBM:XM8Kuqp3qUEMiFriMo6eUAM

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks