8ec96f4756a812bfc886774e8e93634a5cad46159f32a36a4a06cadcc69f3e5e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a4ced16c7bd217282419c86341a09120_NeikiAnalytics.exe
Size

35KB
Sample

240524-evt8each4t
MD5

a4ced16c7bd217282419c86341a09120
SHA1

f5435f528f272ee3dbc2fbc253e6e8965606243d
SHA256

8ec96f4756a812bfc886774e8e93634a5cad46159f32a36a4a06cadcc69f3e5e
SHA512

fcbcd367ecc01c267deaf2c64be5944da041c92e92fceac07e8432a3072cc7542f895215ba07819680c0e95696efff36dd9e9475f050dfba38314526ce53b192
SSDEEP

768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhy:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYS

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  a4ced16c7bd217282419c86341a09120_NeikiAnalytics.exe
- Size
  
  35KB
- MD5
  
  a4ced16c7bd217282419c86341a09120
- SHA1
  
  f5435f528f272ee3dbc2fbc253e6e8965606243d
- SHA256
  
  8ec96f4756a812bfc886774e8e93634a5cad46159f32a36a4a06cadcc69f3e5e
- SHA512
  
  fcbcd367ecc01c267deaf2c64be5944da041c92e92fceac07e8432a3072cc7542f895215ba07819680c0e95696efff36dd9e9475f050dfba38314526ce53b192
- SSDEEP
  
  768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhy:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYS
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2