15a2fd3f5ac0f6f5cb8da28d257cb9ade550be52a38c14f9bc183e3b76f541d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

903e39de43b7dea57796e799199bd9a0_NeikiAnalytics.exe
Size

72KB
Sample

240613-3jq9davhjc
MD5

903e39de43b7dea57796e799199bd9a0
SHA1

fc0158437418c5decf1400d6b12fbc41cdc74193
SHA256

15a2fd3f5ac0f6f5cb8da28d257cb9ade550be52a38c14f9bc183e3b76f541d7
SHA512

f575328c661cf2581152fe8d72c1cb8b4f4a73647929ce7043f80c614e0e6609841cff93a93ab26a782c5d3b3b43d72c21f2d7a7d572782b5b40cfa643c9d393
SSDEEP

384:y6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2x:ypQNwC3BEddsEqOt/hyJF+x3BEJwRr9

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  903e39de43b7dea57796e799199bd9a0_NeikiAnalytics.exe
- Size
  
  72KB
- MD5
  
  903e39de43b7dea57796e799199bd9a0
- SHA1
  
  fc0158437418c5decf1400d6b12fbc41cdc74193
- SHA256
  
  15a2fd3f5ac0f6f5cb8da28d257cb9ade550be52a38c14f9bc183e3b76f541d7
- SHA512
  
  f575328c661cf2581152fe8d72c1cb8b4f4a73647929ce7043f80c614e0e6609841cff93a93ab26a782c5d3b3b43d72c21f2d7a7d572782b5b40cfa643c9d393
- SSDEEP
  
  384:y6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2x:ypQNwC3BEddsEqOt/hyJF+x3BEJwRr9
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2