b1350202914103bc7b5de1fc4cc6f94407d31d164db3904506c4e8c61650eef2 | Triage

Sharing

General

Target

4d3f0c642e6e9f816c97e57440d411f0_NeikiAnalytics.exe
Size

72KB
Sample

240529-kh4h7she79
MD5

4d3f0c642e6e9f816c97e57440d411f0
SHA1

892dd2a1842ab71894e8a830bc8041d39495fc0e
SHA256

b1350202914103bc7b5de1fc4cc6f94407d31d164db3904506c4e8c61650eef2
SHA512

536a3f453a902717dd131eb007cef25566a799e5f7adde791a398a0c6f3414105e034410ecd7b746d3d1fba50aa1633edf55ae6fc87e44451af8263055645e19
SSDEEP

1536:y4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mMKBYPYSWIB0NrY:y4X6NSyfnpijeYEoIcq46iPYSxBMY

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  4d3f0c642e6e9f816c97e57440d411f0_NeikiAnalytics.exe
- Size
  
  72KB
- MD5
  
  4d3f0c642e6e9f816c97e57440d411f0
- SHA1
  
  892dd2a1842ab71894e8a830bc8041d39495fc0e
- SHA256
  
  b1350202914103bc7b5de1fc4cc6f94407d31d164db3904506c4e8c61650eef2
- SHA512
  
  536a3f453a902717dd131eb007cef25566a799e5f7adde791a398a0c6f3414105e034410ecd7b746d3d1fba50aa1633edf55ae6fc87e44451af8263055645e19
- SSDEEP
  
  1536:y4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mMKBYPYSWIB0NrY:y4X6NSyfnpijeYEoIcq46iPYSxBMY
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2