63cd8354d65fbd6bc667be216d2c1eefe3fdc0b3ead7221cb81f7bbfe5a53055 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09f755aa649d3d6bf9f83d3d76886870_NeikiAnalytics.exe
Size

95KB
Sample

240527-wygvxsea95
MD5

09f755aa649d3d6bf9f83d3d76886870
SHA1

1ec2258be320c1683aa4586c9d61178e5b5200b0
SHA256

63cd8354d65fbd6bc667be216d2c1eefe3fdc0b3ead7221cb81f7bbfe5a53055
SHA512

74f957e947d0b9960a7f408bb664cccbed35d5655cb58c99d3061b04b502c89d68338b312dcc759b180b43c07857145cd00fd5084da3f7ae0d188769629f6bfe
SSDEEP

1536:/Ao0+j2d6rnJqlIUSJn3m2GnNCyuaMeFg8kVQ+SvMupWsZZZNF01Lryhv1g1sE1J:/AoVl4lXin3m2GnNCyuaMeFg8kVQ+SvO

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  09f755aa649d3d6bf9f83d3d76886870_NeikiAnalytics.exe
- Size
  
  95KB
- MD5
  
  09f755aa649d3d6bf9f83d3d76886870
- SHA1
  
  1ec2258be320c1683aa4586c9d61178e5b5200b0
- SHA256
  
  63cd8354d65fbd6bc667be216d2c1eefe3fdc0b3ead7221cb81f7bbfe5a53055
- SHA512
  
  74f957e947d0b9960a7f408bb664cccbed35d5655cb58c99d3061b04b502c89d68338b312dcc759b180b43c07857145cd00fd5084da3f7ae0d188769629f6bfe
- SSDEEP
  
  1536:/Ao0+j2d6rnJqlIUSJn3m2GnNCyuaMeFg8kVQ+SvMupWsZZZNF01Lryhv1g1sE1J:/AoVl4lXin3m2GnNCyuaMeFg8kVQ+SvO
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2