6f758182494cda18df6220f3a39dda526a54dfb7ec11d5eb411f7853b6387ea9 | Triage

Sharing

General

Target

426f1b268b921018de305365d77c9160_NeikiAnalytics.exe
Size

68KB
Sample

240529-fnhrgacb48
MD5

426f1b268b921018de305365d77c9160
SHA1

b4736d54646991ea7ef5f9c7a60bc3bb3d170cb1
SHA256

6f758182494cda18df6220f3a39dda526a54dfb7ec11d5eb411f7853b6387ea9
SHA512

c19bef97b26a818dfb6ae7f7243825d11935871e0cff2bfa4fa4978e7418ce78ad3f41f4297cb9a990051a1524050845ea363436b0fe43109f19b33039f7ea4a
SSDEEP

1536:Q4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mOqwezD:Q4X6NSyfnpijeYEoIcq4t6

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  426f1b268b921018de305365d77c9160_NeikiAnalytics.exe
- Size
  
  68KB
- MD5
  
  426f1b268b921018de305365d77c9160
- SHA1
  
  b4736d54646991ea7ef5f9c7a60bc3bb3d170cb1
- SHA256
  
  6f758182494cda18df6220f3a39dda526a54dfb7ec11d5eb411f7853b6387ea9
- SHA512
  
  c19bef97b26a818dfb6ae7f7243825d11935871e0cff2bfa4fa4978e7418ce78ad3f41f4297cb9a990051a1524050845ea363436b0fe43109f19b33039f7ea4a
- SSDEEP
  
  1536:Q4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mOqwezD:Q4X6NSyfnpijeYEoIcq4t6
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2