80fe77e1b3c1f63ea767b6570cd004871fcd65888c9b20ef1cf2bb1dd8b2f962 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3056a5017b3cd30eea84b9bea96ba560_NeikiAnalytics.exe
Size

139KB
Sample

240528-dz5z2ada7w
MD5

3056a5017b3cd30eea84b9bea96ba560
SHA1

82c62917ef34a867dad11003657eef67e783e5f9
SHA256

80fe77e1b3c1f63ea767b6570cd004871fcd65888c9b20ef1cf2bb1dd8b2f962
SHA512

b3f6b60fb6cf8ad5989c0d0506d371cc23f4dcf6f021fb181aa602bd93e8584ce9899427c049c1b71d6c80c4b00aac3b6fdbd7b6127bfb1456154517c984e5fc
SSDEEP

3072:HQC/yj5JO3MnyG+Hu54Fx4xE8YLK4ddJMY86ipmns6P:wlj7cMnr+OEXjKCJMYN

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3056a5017b3cd30eea84b9bea96ba560_NeikiAnalytics.exe
- Size
  
  139KB
- MD5
  
  3056a5017b3cd30eea84b9bea96ba560
- SHA1
  
  82c62917ef34a867dad11003657eef67e783e5f9
- SHA256
  
  80fe77e1b3c1f63ea767b6570cd004871fcd65888c9b20ef1cf2bb1dd8b2f962
- SHA512
  
  b3f6b60fb6cf8ad5989c0d0506d371cc23f4dcf6f021fb181aa602bd93e8584ce9899427c049c1b71d6c80c4b00aac3b6fdbd7b6127bfb1456154517c984e5fc
- SSDEEP
  
  3072:HQC/yj5JO3MnyG+Hu54Fx4xE8YLK4ddJMY86ipmns6P:wlj7cMnr+OEXjKCJMYN
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2