Overview

overview

6

Static

static

1

503efa0bf9...cs.exe

windows7-x64

6

503efa0bf9...cs.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    503efa0bf90c646caf5dc14ac3583b30_NeikiAnalytics.exe

  • Size

    4.1MB

  • Sample

    240526-cmp8dabb6s

  • MD5

    503efa0bf90c646caf5dc14ac3583b30

  • SHA1

    0d82ae4b15978167e4ce606cd4ee7b132caaa3fb

  • SHA256

    1eaa4cd7a442e8473c47a67120920af751c1cbbe7e63543c1f5d206c5bbacbfa

  • SHA512

    2c9288aa459a62388014097919d88e7a7691d9044aa509a1978db24a3a4c8e5b765124ad193d0ce8eac48d8a1e98b29ea27cc0fdc893500d572d8c86b8b3f89d

  • SSDEEP

    98304:sqqTewvfzKDYxb2GA5Ir4Uu8j13PDmZ3uakQrBDhB:STlKIbBCe39mZ3uMrBDr

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      503efa0bf90c646caf5dc14ac3583b30_NeikiAnalytics.exe

    • Size

      4.1MB

    • MD5

      503efa0bf90c646caf5dc14ac3583b30

    • SHA1

      0d82ae4b15978167e4ce606cd4ee7b132caaa3fb

    • SHA256

      1eaa4cd7a442e8473c47a67120920af751c1cbbe7e63543c1f5d206c5bbacbfa

    • SHA512

      2c9288aa459a62388014097919d88e7a7691d9044aa509a1978db24a3a4c8e5b765124ad193d0ce8eac48d8a1e98b29ea27cc0fdc893500d572d8c86b8b3f89d

    • SSDEEP

      98304:sqqTewvfzKDYxb2GA5Ir4Uu8j13PDmZ3uakQrBDhB:STlKIbBCe39mZ3uMrBDr

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Privilege Escalation

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks