bd97ca2d19a9a6c5b810d60d6da25d0e40b09d191f2456c014dbede84e1ce195 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c0ef2bbba588406152eddc3bf1ee7e10_NeikiAnalytics.exe
Size

2.7MB
Sample

240603-trl5ysdc56
MD5

c0ef2bbba588406152eddc3bf1ee7e10
SHA1

50a8e7868b3fb96c7f112ff0c83839418a82ede2
SHA256

bd97ca2d19a9a6c5b810d60d6da25d0e40b09d191f2456c014dbede84e1ce195
SHA512

e8c5565a03de03d0ea443d8235aeb69769d60acf099f8c15bed9ff01373c2f2adf0f82da8311a67a9fe9f657a6c43ba63c628ff961d2d1bd1d7cb79f3e05ecbc
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBP9w4Sx:+R0pI/IQlUoMPdmpSpr4

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  c0ef2bbba588406152eddc3bf1ee7e10_NeikiAnalytics.exe
- Size
  
  2.7MB
- MD5
  
  c0ef2bbba588406152eddc3bf1ee7e10
- SHA1
  
  50a8e7868b3fb96c7f112ff0c83839418a82ede2
- SHA256
  
  bd97ca2d19a9a6c5b810d60d6da25d0e40b09d191f2456c014dbede84e1ce195
- SHA512
  
  e8c5565a03de03d0ea443d8235aeb69769d60acf099f8c15bed9ff01373c2f2adf0f82da8311a67a9fe9f657a6c43ba63c628ff961d2d1bd1d7cb79f3e05ecbc
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBP9w4Sx:+R0pI/IQlUoMPdmpSpr4
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2