72f2bb07bdc5e6f1c85bac3c1b145bc2c7f44d775f8dc3ea80c9959e8dbcab2b | Triage

Sharing

General

Target

acff92d059c406aab36c6dc7ec34e490_NeikiAnalytics.exe
Size

29KB
Sample

240524-fkc2taeb74
MD5

acff92d059c406aab36c6dc7ec34e490
SHA1

bb49f9902220fe34552085687049b18c482f3a70
SHA256

72f2bb07bdc5e6f1c85bac3c1b145bc2c7f44d775f8dc3ea80c9959e8dbcab2b
SHA512

4680d6dc5eb6b0a88e8fa3029368dd9cda144e05da5b47b9fa68e6852e01e5881296b775806936f75c6c2b2bc0e0516b56fe6026a2b1ceed5038e05eeeabe58c
SSDEEP

768:VqPJtMA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EwhSahGCo4:VqsA6C1VqaqhtgVRNToV7TtRu8rM0wY+

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  acff92d059c406aab36c6dc7ec34e490_NeikiAnalytics.exe
- Size
  
  29KB
- MD5
  
  acff92d059c406aab36c6dc7ec34e490
- SHA1
  
  bb49f9902220fe34552085687049b18c482f3a70
- SHA256
  
  72f2bb07bdc5e6f1c85bac3c1b145bc2c7f44d775f8dc3ea80c9959e8dbcab2b
- SHA512
  
  4680d6dc5eb6b0a88e8fa3029368dd9cda144e05da5b47b9fa68e6852e01e5881296b775806936f75c6c2b2bc0e0516b56fe6026a2b1ceed5038e05eeeabe58c
- SSDEEP
  
  768:VqPJtMA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EwhSahGCo4:VqsA6C1VqaqhtgVRNToV7TtRu8rM0wY+
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2