6fd006faac038b066fcc9878c24886b19132fec2d01401c4f8ffd007280c7684 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14c2dc8d8568a6e37d87ede4e97c3570_NeikiAnalytics.exe
Size

2.7MB
Sample

240527-bsxzqsbc7y
MD5

14c2dc8d8568a6e37d87ede4e97c3570
SHA1

f987800ae576d123b00ec34c9e90e0c5bed7f374
SHA256

6fd006faac038b066fcc9878c24886b19132fec2d01401c4f8ffd007280c7684
SHA512

33abc012978329f44f15dcbe0eb920589349bf93e38f057e5fa524a05c6f87a32f1f9864950c27b42656c6e0661596e7fc542c018724b31d9cccf22aa4a497ae
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBP9w4Sx:+R0pI/IQlUoMPdmpSpz4

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  14c2dc8d8568a6e37d87ede4e97c3570_NeikiAnalytics.exe
- Size
  
  2.7MB
- MD5
  
  14c2dc8d8568a6e37d87ede4e97c3570
- SHA1
  
  f987800ae576d123b00ec34c9e90e0c5bed7f374
- SHA256
  
  6fd006faac038b066fcc9878c24886b19132fec2d01401c4f8ffd007280c7684
- SHA512
  
  33abc012978329f44f15dcbe0eb920589349bf93e38f057e5fa524a05c6f87a32f1f9864950c27b42656c6e0661596e7fc542c018724b31d9cccf22aa4a497ae
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBP9w4Sx:+R0pI/IQlUoMPdmpSpz4
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2