2c4d4b1bca2247358081309c1691fa147c4d6faab09d57cef0c2ef1472df8bc3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c4d4b1bca2247358081309c1691fa147c4d6faab09d57cef0c2ef1472df8bc3_NeikiAnalytics.exe
Size

138KB
Sample

240620-dgn9kavere
MD5

75128971e2cf95a4d3aacd953524abb0
SHA1

638437e61ccb702cb7b5508f15db346e381fa128
SHA256

2c4d4b1bca2247358081309c1691fa147c4d6faab09d57cef0c2ef1472df8bc3
SHA512

492392554b84d540c1c46dc828fb49eff862a520e84c219292e6b75a49fbc10993f896f2101dd086e7651858fbef979f2a40a6f7fae66fc6eff65c33bc9428ea
SSDEEP

1536:rC2/fYuPfbESFYXRWhpKRycRd57JkIqFHhzm4hWru/BzihhMN45MF5FvHP132xPb:r7YubEwYXRWhpAJUHhzm4hUukS6Kmecl

Score

8^/10

evasion execution

Malware Config

Targets

- Target
  
  2c4d4b1bca2247358081309c1691fa147c4d6faab09d57cef0c2ef1472df8bc3_NeikiAnalytics.exe
- Size
  
  138KB
- MD5
  
  75128971e2cf95a4d3aacd953524abb0
- SHA1
  
  638437e61ccb702cb7b5508f15db346e381fa128
- SHA256
  
  2c4d4b1bca2247358081309c1691fa147c4d6faab09d57cef0c2ef1472df8bc3
- SHA512
  
  492392554b84d540c1c46dc828fb49eff862a520e84c219292e6b75a49fbc10993f896f2101dd086e7651858fbef979f2a40a6f7fae66fc6eff65c33bc9428ea
- SSDEEP
  
  1536:rC2/fYuPfbESFYXRWhpKRycRd57JkIqFHhzm4hWru/BzihhMN45MF5FvHP132xPb:r7YubEwYXRWhpAJUHhzm4hUukS6Kmecl
Score

8^/10

evasion execution
- Stops running service(s)
  evasion execution
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionexecution

behavioral2

evasionexecution