391c4a9efc5fe391b5be45eef1784a73d716d12bd88ca2d63ffc754750e97efa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

035556905825d9de954b2c4c3039fb50_NeikiAnalytics.exe
Size

1.2MB
Sample

240526-z82vmacd8y
MD5

035556905825d9de954b2c4c3039fb50
SHA1

94c968fbe37f830a1947dd9b393bb917aed85d4d
SHA256

391c4a9efc5fe391b5be45eef1784a73d716d12bd88ca2d63ffc754750e97efa
SHA512

e7425c82646ccaa6beca650d3aef2a9665a180c5cf3533f289e0545c7a66e566a0fad73d421a752318a9c80832a52fc26547becec1065a039c4395e9d3be9199
SSDEEP

24576:9ZSA8nZHZ9ozY6nHH5H6MUT6baz3CMmxPisRMYguiw7a/ZSya/JXk377Lv+f6T8P:GA8nWzY6nHHd6Z6ba7P+Khw7gxg23bnI

Score

7^/10

Malware Config

Targets

- Target
  
  035556905825d9de954b2c4c3039fb50_NeikiAnalytics.exe
- Size
  
  1.2MB
- MD5
  
  035556905825d9de954b2c4c3039fb50
- SHA1
  
  94c968fbe37f830a1947dd9b393bb917aed85d4d
- SHA256
  
  391c4a9efc5fe391b5be45eef1784a73d716d12bd88ca2d63ffc754750e97efa
- SHA512
  
  e7425c82646ccaa6beca650d3aef2a9665a180c5cf3533f289e0545c7a66e566a0fad73d421a752318a9c80832a52fc26547becec1065a039c4395e9d3be9199
- SSDEEP
  
  24576:9ZSA8nZHZ9ozY6nHH5H6MUT6baz3CMmxPisRMYguiw7a/ZSya/JXk377Lv+f6T8P:GA8nWzY6nHHd6Z6ba7P+Khw7gxg23bnI
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2