cc1aadf31af786043ae9cf6d658c654f77c839be9edd1add9f8c8451bd91dc35 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ecfc011ffe3ff186d52ce210791cb30_NeikiAnalytics.exe
Size

119KB
Sample

240528-l7q5vagc29
MD5

3ecfc011ffe3ff186d52ce210791cb30
SHA1

f82960d311c0bafe63c98cff92d1c3097ad81cc8
SHA256

cc1aadf31af786043ae9cf6d658c654f77c839be9edd1add9f8c8451bd91dc35
SHA512

1b35e7a56424c56f94f5a45e813fcd42adcc94d5d479eae7f6213c3188b22b4f934e048b57d235449d549cf7c4a4b05fe4ef4618ce61a086aace38716d151ba2
SSDEEP

3072:OE9j8b3ZXgKC1hX//iASOXRJzDOD26j/3Dc69+:OEebiKuX//iZOXRJ3OD26jxU

Score

8^/10

evasion execution

Malware Config

Targets

- Target
  
  3ecfc011ffe3ff186d52ce210791cb30_NeikiAnalytics.exe
- Size
  
  119KB
- MD5
  
  3ecfc011ffe3ff186d52ce210791cb30
- SHA1
  
  f82960d311c0bafe63c98cff92d1c3097ad81cc8
- SHA256
  
  cc1aadf31af786043ae9cf6d658c654f77c839be9edd1add9f8c8451bd91dc35
- SHA512
  
  1b35e7a56424c56f94f5a45e813fcd42adcc94d5d479eae7f6213c3188b22b4f934e048b57d235449d549cf7c4a4b05fe4ef4618ce61a086aace38716d151ba2
- SSDEEP
  
  3072:OE9j8b3ZXgKC1hX//iASOXRJzDOD26j/3Dc69+:OEebiKuX//iZOXRJ3OD26jxU
Score

8^/10

evasion execution
- Stops running service(s)
  evasion execution
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionexecution

behavioral2

evasionexecution