70ce6494b55f9e53cf91c48487f3570751ada0ff678f268b7911f98ce48a56c7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f654b2a009f08b2f661e267168d19330_NeikiAnalytics.exe
Size

2.0MB
Sample

240601-mbgf7shg2t
MD5

f654b2a009f08b2f661e267168d19330
SHA1

6162439074297539d701883add1abaa051e0b821
SHA256

70ce6494b55f9e53cf91c48487f3570751ada0ff678f268b7911f98ce48a56c7
SHA512

a3ca69f6a19464ea4073218e3c8349e93c7caa8973d6aa8508bb8213ce220c46aedd4c8ccdda22a2da82f2406913753f8c6f04ab2074deca42366bd51ef92c26
SSDEEP

49152:UOz59dcfPQgzy/8g4HbExL5ISJSK6naPsD0gKQZ:h9cfPIYHQQSJSKPF7i

Score

7^/10

Malware Config

Targets

- Target
  
  f654b2a009f08b2f661e267168d19330_NeikiAnalytics.exe
- Size
  
  2.0MB
- MD5
  
  f654b2a009f08b2f661e267168d19330
- SHA1
  
  6162439074297539d701883add1abaa051e0b821
- SHA256
  
  70ce6494b55f9e53cf91c48487f3570751ada0ff678f268b7911f98ce48a56c7
- SHA512
  
  a3ca69f6a19464ea4073218e3c8349e93c7caa8973d6aa8508bb8213ce220c46aedd4c8ccdda22a2da82f2406913753f8c6f04ab2074deca42366bd51ef92c26
- SSDEEP
  
  49152:UOz59dcfPQgzy/8g4HbExL5ISJSK6naPsD0gKQZ:h9cfPIYHQQSJSKPF7i
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2