a63fc56a64945fb6c71d5aa9357cf722f18d37218cae87692d7247a156b8bdf9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13494441e85a883dfb63fb7f33e98810_NeikiAnalytics.exe
Size

44KB
Sample

240610-ph1jrsvbkb
MD5

13494441e85a883dfb63fb7f33e98810
SHA1

5cb7d78b42953f80fd5c71e441e66d596a7e6080
SHA256

a63fc56a64945fb6c71d5aa9357cf722f18d37218cae87692d7247a156b8bdf9
SHA512

5083942e00c4eb85ae48c4d73b33e3beb5485f2fa038551dcfdb8e94b3e359b4886d69cff267f203071711ff4ac794dd6817aa2beda5cc582336f8ca17e26006
SSDEEP

768:8V5hy+7c6OXdfwEQ90NoZCi5TXbRzjEDta8jFqjsZvI2YxrQiP+ZRDd+RYTl/iUz:8h7xsCKosi5pzjIcdRiTpqMGxs3j

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  13494441e85a883dfb63fb7f33e98810_NeikiAnalytics.exe
- Size
  
  44KB
- MD5
  
  13494441e85a883dfb63fb7f33e98810
- SHA1
  
  5cb7d78b42953f80fd5c71e441e66d596a7e6080
- SHA256
  
  a63fc56a64945fb6c71d5aa9357cf722f18d37218cae87692d7247a156b8bdf9
- SHA512
  
  5083942e00c4eb85ae48c4d73b33e3beb5485f2fa038551dcfdb8e94b3e359b4886d69cff267f203071711ff4ac794dd6817aa2beda5cc582336f8ca17e26006
- SSDEEP
  
  768:8V5hy+7c6OXdfwEQ90NoZCi5TXbRzjEDta8jFqjsZvI2YxrQiP+ZRDd+RYTl/iUz:8h7xsCKosi5pzjIcdRiTpqMGxs3j
Score

8^/10

persistence
- Sets file execution options in registry
  persistence
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Change Default File Association

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2