c5b64b14c81c8a01e31f1df394679f6b0e90cf9e19aa043eacdf8f62999a1143 | Triage

Sharing

General

Target

78b946447ff56636422972b7c642b240_NeikiAnalytics.exe
Size

64KB
Sample

240531-fyxndagc6s
MD5

78b946447ff56636422972b7c642b240
SHA1

8b8076671b5456b08a34a0dde9e8039685cf7929
SHA256

c5b64b14c81c8a01e31f1df394679f6b0e90cf9e19aa043eacdf8f62999a1143
SHA512

fb2170bf427aa96b36ba02a20f15f91810f2b09dde3f5f1d18245f22f049f370a12aee99654e5f839b046b1d283fb1224d2ad5b6b5e8dd46f9b06ea727380d63
SSDEEP

384:ObLwOs8AHsc4HMPwhKQLroTr4/CFsrdHWMZw:Ovw981xvhKQLroTr4/wQpWMZw

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  78b946447ff56636422972b7c642b240_NeikiAnalytics.exe
- Size
  
  64KB
- MD5
  
  78b946447ff56636422972b7c642b240
- SHA1
  
  8b8076671b5456b08a34a0dde9e8039685cf7929
- SHA256
  
  c5b64b14c81c8a01e31f1df394679f6b0e90cf9e19aa043eacdf8f62999a1143
- SHA512
  
  fb2170bf427aa96b36ba02a20f15f91810f2b09dde3f5f1d18245f22f049f370a12aee99654e5f839b046b1d283fb1224d2ad5b6b5e8dd46f9b06ea727380d63
- SSDEEP
  
  384:ObLwOs8AHsc4HMPwhKQLroTr4/CFsrdHWMZw:Ovw981xvhKQLroTr4/wQpWMZw
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2