50c540b21a561218590e84ce14c35f36fd126cc248c1c888d5c9f74daef6bf34 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8b3270c94fea9c2eb8faf1b5649b0110_NeikiAnalytics.exe
Size

184KB
Sample

240601-dns64age25
MD5

8b3270c94fea9c2eb8faf1b5649b0110
SHA1

131246d70e3238d1cf5aa24d46a46b9661f211cb
SHA256

50c540b21a561218590e84ce14c35f36fd126cc248c1c888d5c9f74daef6bf34
SHA512

37a011b92515b8b7c41f47dbdac8e9cde7b00dff50d33908d428be0712d481159832df721bde58d12bf8ea3c85e930e722d1ea36c3ba9d3bb5299acd1f1baf3c
SSDEEP

3072:Hk1wXConDHLSQdp1tZDk8h8sqlvnqnviur:HkLoSMp1Q8usqlPqnviu

Score

7^/10

Malware Config

Targets

- Target
  
  8b3270c94fea9c2eb8faf1b5649b0110_NeikiAnalytics.exe
- Size
  
  184KB
- MD5
  
  8b3270c94fea9c2eb8faf1b5649b0110
- SHA1
  
  131246d70e3238d1cf5aa24d46a46b9661f211cb
- SHA256
  
  50c540b21a561218590e84ce14c35f36fd126cc248c1c888d5c9f74daef6bf34
- SHA512
  
  37a011b92515b8b7c41f47dbdac8e9cde7b00dff50d33908d428be0712d481159832df721bde58d12bf8ea3c85e930e722d1ea36c3ba9d3bb5299acd1f1baf3c
- SSDEEP
  
  3072:Hk1wXConDHLSQdp1tZDk8h8sqlvnqnviur:HkLoSMp1Q8usqlPqnviu
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2