General

  • Target

    1e96a957c56529d0470b60983b189cb0_NeikiAnalytics.exe

  • Size

    67KB

  • Sample

    240610-23tceavdlq

  • MD5

    1e96a957c56529d0470b60983b189cb0

  • SHA1

    64d8f812297e40584995bd45928e831f2913c498

  • SHA256

    1017ec6a91e24457c4a30b2e336b83c700874c4119302a4e856422ad6f633ccc

  • SHA512

    55363e0a48c3d00b2a52882727744febb7115abcc1fa8389084679dc2fc34de53b5882fd97ff2f16dae02b292f7c9c4422f9d3052e41406dde376c598b974279

  • SSDEEP

    1536:yS0s2WhwyAhPtEPGJLNdlN18T3BJ+C2+BBgoTJH:ySrh2tEPKLlN1y3BJ+C2+BBJTR

Score
7/10
upx

Malware Config

Targets

    • Target

      1e96a957c56529d0470b60983b189cb0_NeikiAnalytics.exe

    • Size

      67KB

    • MD5

      1e96a957c56529d0470b60983b189cb0

    • SHA1

      64d8f812297e40584995bd45928e831f2913c498

    • SHA256

      1017ec6a91e24457c4a30b2e336b83c700874c4119302a4e856422ad6f633ccc

    • SHA512

      55363e0a48c3d00b2a52882727744febb7115abcc1fa8389084679dc2fc34de53b5882fd97ff2f16dae02b292f7c9c4422f9d3052e41406dde376c598b974279

    • SSDEEP

      1536:yS0s2WhwyAhPtEPGJLNdlN18T3BJ+C2+BBgoTJH:ySrh2tEPKLlN1y3BJ+C2+BBJTR

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Target

      $PLUGINSDIR/inetc.dll

    • Size

      20KB

    • MD5

      4c01fdfd2b57b32046b3b3635a4f4df8

    • SHA1

      e0af8e418cbe2b2783b5de93279a3b5dcb73490e

    • SHA256

      b98e21645910f82b328f30c644b86c112969b42697e797671647b09eb40ad014

    • SHA512

      cbd354536e2a970d31ba69024208673b1dc56603ad604ff17c5840b4371958fc22bafd90040ae3fb19ae9c248b2cfce08d0bc73cc93481f02c73b86dbc0697b2

    • SSDEEP

      384:rJBJ8VnX8K+uKn2WQJdxbs3aEUhU7ya4L60Ac9khYLMkIX0+GwNyEAG:3J8+K+uK2WQJdxbsqEUhUua4L6AG

    Score
    3/10
    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      6KB

    • MD5

      acc2b699edfea5bf5aae45aba3a41e96

    • SHA1

      d2accf4d494e43ceb2cff69abe4dd17147d29cc2

    • SHA256

      168a974eaa3f588d759db3f47c1a9fdc3494ba1fa1a73a84e5e3b2a4d58abd7e

    • SHA512

      e29ea10ada98c71a18273b04f44f385b120d4e8473e441ce5748cfa44a23648814f2656f429b85440157988c88de776c6ac008dc38bf09cbb746c230a46c69fe

    • SSDEEP

      96:M7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3VI9d0qqyVgNk32E:eKgfwgcr8zylsB49Ud0qJVgNX

    Score
    3/10
    • Target

      $PLUGINSDIR/nsJSON.dll

    • Size

      6KB

    • MD5

      292aa9f95a7f081625056c497078159a

    • SHA1

      72076f3eb146ab7ea2b3dd0ef6a63c06f86d64f1

    • SHA256

      18f2b2f20c65a022a1c8aaf776b4c9be6c193b73c2079d9d65d56b802fcadfb5

    • SHA512

      87f83c3bbcfedd98364b5d0209f912e66c72d43eb887438ad9735c078e6d1f6ea12566a75f0b652602bbd9f0608ce7148dc1703821f2ab6b366f061b8a58d910

    • SSDEEP

      96:u2r8Z0x0OOG+2tOgdC+qzf+Sdv9wMxOHKCt6qZZLAL5EICN9r7HcnrDn:uHI+2e9zf++viMot6qZFYEIC7jcrL

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks