Overview

overview

10

Static

static

1

8038c05f9f...cs.exe

windows7-x64

10

8038c05f9f...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8038c05f9ff14c1b2f0df91a4c6ec070_NeikiAnalytics.exe

  • Size

    218KB

  • Sample

    240613-qq6ana1bkf

  • MD5

    8038c05f9ff14c1b2f0df91a4c6ec070

  • SHA1

    e7f0e08d50b43ca9c66f78e7045a08abf8091c28

  • SHA256

    06f4bb371fe6c04372c39c5a93d4859c0bc006f0bdbfa19eacc4c9af0339751e

  • SHA512

    10acc4dd04db63cc8d0a36fb09991d977fa507709a4cbd1cf041e7d975addcb58451e73bf3bb60a686955cdb34a8d64614c93a19ada33c4db378011277ef7e76

  • SSDEEP

    3072:Nvm4SZsQrNzPrl6rjGMjp39d4u8iqddCxMIJOb2o5DsBPjim6hwM2H6:B1SyAJp6rjn1gOObn4b6h9h

Score
10/10
persistence

Malware Config

Targets

    • Target

      8038c05f9ff14c1b2f0df91a4c6ec070_NeikiAnalytics.exe

    • Size

      218KB

    • MD5

      8038c05f9ff14c1b2f0df91a4c6ec070

    • SHA1

      e7f0e08d50b43ca9c66f78e7045a08abf8091c28

    • SHA256

      06f4bb371fe6c04372c39c5a93d4859c0bc006f0bdbfa19eacc4c9af0339751e

    • SHA512

      10acc4dd04db63cc8d0a36fb09991d977fa507709a4cbd1cf041e7d975addcb58451e73bf3bb60a686955cdb34a8d64614c93a19ada33c4db378011277ef7e76

    • SSDEEP

      3072:Nvm4SZsQrNzPrl6rjGMjp39d4u8iqddCxMIJOb2o5DsBPjim6hwM2H6:B1SyAJp6rjn1gOObn4b6h9h

    Score
    10/10
    persistence

    • Modifies WinLogon for persistence

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies WinLogon

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks