73d5a2ebd786528030509ecf9c9035f88296828483a53cef4272450e90c00246 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ffe7a06d4cc9d586ca467352ba33bd0_NeikiAnalytics.exe
Size

135KB
Sample

240530-cnne6sbh24
MD5

5ffe7a06d4cc9d586ca467352ba33bd0
SHA1

801949e50eace50cb6597cf2035116ec465ddac2
SHA256

73d5a2ebd786528030509ecf9c9035f88296828483a53cef4272450e90c00246
SHA512

25623e5a62a6384aaaee91f7695156f1d8dc4c70539c7a1992ee95fa0dfee180d78c4d4e06edea02bd393fc2d101da4cb3614865b2a03f863a8beadd527890b4
SSDEEP

1536:4fsEqouTRcG/Mzvgf7xEuvnXNTRdUzwTekUOisZ1yDDajtXbVwRH:4VqoCl/YgjxEufVU0TbTyDDalu9

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  5ffe7a06d4cc9d586ca467352ba33bd0_NeikiAnalytics.exe
- Size
  
  135KB
- MD5
  
  5ffe7a06d4cc9d586ca467352ba33bd0
- SHA1
  
  801949e50eace50cb6597cf2035116ec465ddac2
- SHA256
  
  73d5a2ebd786528030509ecf9c9035f88296828483a53cef4272450e90c00246
- SHA512
  
  25623e5a62a6384aaaee91f7695156f1d8dc4c70539c7a1992ee95fa0dfee180d78c4d4e06edea02bd393fc2d101da4cb3614865b2a03f863a8beadd527890b4
- SSDEEP
  
  1536:4fsEqouTRcG/Mzvgf7xEuvnXNTRdUzwTekUOisZ1yDDajtXbVwRH:4VqoCl/YgjxEufVU0TbTyDDalu9
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence