Overview

overview

10

Static

static

3

600c803eae...cs.exe

windows7-x64

10

600c803eae...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    600c803eaec90df8b4282c93640bdc20_NeikiAnalytics.exe

  • Size

    34KB

  • Sample

    240530-cpwg6sah5w

  • MD5

    600c803eaec90df8b4282c93640bdc20

  • SHA1

    1f58dc28f78f23b57b92e50cd454e3f5a372eafb

  • SHA256

    44e33767bdb552da91393bfc2b0218d4101fcec8d2f907e9df9254f45ea6abd0

  • SHA512

    bf3e1b008dbcd269010821c32985872f5f1198fe171d8374f613c0c17943ab82fd9c5842675dd0329af20fb806866320bd74aa5f7d89f4e7c4b7547a13976831

  • SSDEEP

    384:f6Lz0OyPaGPbG8FecNrgzbUFPlfRNefMfNq8U+ahKWRzpeancfKykJIyfgS9/V+Z:f6Lo1RPbPFHRgzwFPlf/efMTNUdI8W

Score
10/10
ginkpersistenceworm

Malware Config

Targets

    • Target

      600c803eaec90df8b4282c93640bdc20_NeikiAnalytics.exe

    • Size

      34KB

    • MD5

      600c803eaec90df8b4282c93640bdc20

    • SHA1

      1f58dc28f78f23b57b92e50cd454e3f5a372eafb

    • SHA256

      44e33767bdb552da91393bfc2b0218d4101fcec8d2f907e9df9254f45ea6abd0

    • SHA512

      bf3e1b008dbcd269010821c32985872f5f1198fe171d8374f613c0c17943ab82fd9c5842675dd0329af20fb806866320bd74aa5f7d89f4e7c4b7547a13976831

    • SSDEEP

      384:f6Lz0OyPaGPbG8FecNrgzbUFPlfRNefMfNq8U+ahKWRzpeancfKykJIyfgS9/V+Z:f6Lo1RPbPFHRgzwFPlf/efMTNUdI8W

    Score
    10/10
    ginkpersistenceworm
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks