redline | d8ef5ae19d759524d9e72a70de36e41c64e3ad465f94c6d39c7e2645c3363bd1 | Triage

Submit
Reports

Overview

overview

Static

static

051571fe6a...cs.exe

windows7-x64

1

051571fe6a...cs.exe

windows10-2004-x64

5

Sharing

General

Target

051571fe6a02149a3a3aa2bab6703c00_NeikiAnalytics.exe
Size

172KB
Sample

240526-1m318sea67
MD5

051571fe6a02149a3a3aa2bab6703c00
SHA1

f082351d92d3d8fd224634afd908ed4d107013ff
SHA256

d8ef5ae19d759524d9e72a70de36e41c64e3ad465f94c6d39c7e2645c3363bd1
SHA512

d1c43f90e9139ae9fef290fafac11e5b19b51e463ee422ee48bd54b2e5f4ce41068af77cd3d30bb05a016d2925b8dd1cf10fa25e59dca12c727ee786bfb2e03f
SSDEEP

3072:RqaJm74qpXtmOnJjBawT253uaxfKfVvXgDOL3DzpPL0F0JCb3O3Cb3hHSHUEcC8p:psfdPnth

Score

10^/10

redline microsoft phishing

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

051571fe6a02149a3a3aa2bab6703c00_NeikiAnalytics.exe

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

051571fe6a02149a3a3aa2bab6703c00_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

microsoft phishing

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Family

redline

C2

82.115.223.46:57672

Attributes

auth_value
25566e143199c0836b0e51542c425f6e

Targets

- Target
  
  051571fe6a02149a3a3aa2bab6703c00_NeikiAnalytics.exe
- Size
  
  172KB
- MD5
  
  051571fe6a02149a3a3aa2bab6703c00
- SHA1
  
  f082351d92d3d8fd224634afd908ed4d107013ff
- SHA256
  
  d8ef5ae19d759524d9e72a70de36e41c64e3ad465f94c6d39c7e2645c3363bd1
- SHA512
  
  d1c43f90e9139ae9fef290fafac11e5b19b51e463ee422ee48bd54b2e5f4ce41068af77cd3d30bb05a016d2925b8dd1cf10fa25e59dca12c727ee786bfb2e03f
- SSDEEP
  
  3072:RqaJm74qpXtmOnJjBawT253uaxfKfVvXgDOL3DzpPL0F0JCb3O3Cb3hHSHUEcC8p:psfdPnth
Score

5^/10

microsoft phishing
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

microsoftphishing

© 2018-2024

Terms | Privacy