Overview

overview

8

Static

static

3

55f7678287...cs.exe

windows7-x64

8

55f7678287...cs.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    55f7678287be69231857540d10acbf80_NeikiAnalytics.exe

  • Size

    2.2MB

  • Sample

    240605-qe2hbshb27

  • MD5

    55f7678287be69231857540d10acbf80

  • SHA1

    26a02c05cc1c310b3e1016f797d703596185a1d6

  • SHA256

    fed07e5c4bf506ba335dae019932b953208fbada5fc680aea5837324ed339e9e

  • SHA512

    cb2995418b65a7fb9bf14bbd504f6c9b65bcbbdbd92955dd24ebeb2abe2ef00c9af89a8ff25494a8ea2c24b019bf217d8fb06c0e892e0737494cfa541bc53431

  • SSDEEP

    49152:hW9vvImv1B6MIP2aWbC6JwbP7WkaBcZgnp/CTgzyUSnbRpWT3ZI43Ar:hSAmX6MlaWbC6JwbP7Wd6Z9gzinbRpnZ

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      55f7678287be69231857540d10acbf80_NeikiAnalytics.exe

    • Size

      2.2MB

    • MD5

      55f7678287be69231857540d10acbf80

    • SHA1

      26a02c05cc1c310b3e1016f797d703596185a1d6

    • SHA256

      fed07e5c4bf506ba335dae019932b953208fbada5fc680aea5837324ed339e9e

    • SHA512

      cb2995418b65a7fb9bf14bbd504f6c9b65bcbbdbd92955dd24ebeb2abe2ef00c9af89a8ff25494a8ea2c24b019bf217d8fb06c0e892e0737494cfa541bc53431

    • SSDEEP

      49152:hW9vvImv1B6MIP2aWbC6JwbP7WkaBcZgnp/CTgzyUSnbRpWT3ZI43Ar:hSAmX6MlaWbC6JwbP7Wd6Z9gzinbRpnZ

    Score
    8/10
    persistenceupx

    • Modifies AppInit DLL entries

      persistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks