2f74fbc202004cc839c592fb5257a0fadf323a589d3b2767791fdcb28854b3c5 | Triage

Sharing

General

Target

d9b63767590d4a1803da096521fccce0_NeikiAnalytics.exe
Size

99KB
Sample

240616-gb64zawanm
MD5

d9b63767590d4a1803da096521fccce0
SHA1

3b291582a1a4a2e9106cf1f521d585fea977e863
SHA256

2f74fbc202004cc839c592fb5257a0fadf323a589d3b2767791fdcb28854b3c5
SHA512

171d90654496d16abbd6ec7aacff841520e4119e7dd943895d512f09c6b8d562d1dff32a9f251143a362b5bfa2db94cfb166d89421e46ed4dd2df1b03e3989d6
SSDEEP

1536:eshfSWHHNvoLqNwDDGwCe6cLJxtdlmTgja52YN3e0zm:vhfxHNIie6cLJxtdlmTgja52YN3e0zm

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  d9b63767590d4a1803da096521fccce0_NeikiAnalytics.exe
- Size
  
  99KB
- MD5
  
  d9b63767590d4a1803da096521fccce0
- SHA1
  
  3b291582a1a4a2e9106cf1f521d585fea977e863
- SHA256
  
  2f74fbc202004cc839c592fb5257a0fadf323a589d3b2767791fdcb28854b3c5
- SHA512
  
  171d90654496d16abbd6ec7aacff841520e4119e7dd943895d512f09c6b8d562d1dff32a9f251143a362b5bfa2db94cfb166d89421e46ed4dd2df1b03e3989d6
- SSDEEP
  
  1536:eshfSWHHNvoLqNwDDGwCe6cLJxtdlmTgja52YN3e0zm:vhfxHNIie6cLJxtdlmTgja52YN3e0zm
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2