Overview

overview

10

Static

static

3

2a488a90c2...cs.exe

windows7-x64

10

2a488a90c2...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2a488a90c203457aecf4ad316a703220_NeikiAnalytics.exe

  • Size

    37KB

  • Sample

    240604-egkf2scc41

  • MD5

    2a488a90c203457aecf4ad316a703220

  • SHA1

    c600f751fbcffe3db0c7a62b7da316e9e848350b

  • SHA256

    ea04a2c6b205c608715116bdbb730b00466dae52b6575c2ae5f7a330e256bef1

  • SHA512

    f9ecc3551e46861d260c530e58ddd0eb35a3ea3495be007e857d8108df061b28c8c8818965e68eb87680437d1b9544f568d5f621f621ca189e1fa65533587985

  • SSDEEP

    384:H5+UTsRkgWHZcXnDYc+4Yxt/4j5X/HLcyGgl185nI87hGr:H5hgkgWGXDYc+Vxt/49jz8I8w

Score
10/10
ginkpersistenceworm

Malware Config

Targets

    • Target

      2a488a90c203457aecf4ad316a703220_NeikiAnalytics.exe

    • Size

      37KB

    • MD5

      2a488a90c203457aecf4ad316a703220

    • SHA1

      c600f751fbcffe3db0c7a62b7da316e9e848350b

    • SHA256

      ea04a2c6b205c608715116bdbb730b00466dae52b6575c2ae5f7a330e256bef1

    • SHA512

      f9ecc3551e46861d260c530e58ddd0eb35a3ea3495be007e857d8108df061b28c8c8818965e68eb87680437d1b9544f568d5f621f621ca189e1fa65533587985

    • SSDEEP

      384:H5+UTsRkgWHZcXnDYc+4Yxt/4j5X/HLcyGgl185nI87hGr:H5hgkgWGXDYc+Vxt/49jz8I8w

    Score
    10/10
    ginkpersistenceworm
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks