6958b883f6c435592a73abbbfb2631a0e50363ab1ace14f8ef456c3fe5807c3d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6958b883f6c435592a73abbbfb2631a0e50363ab1ace14f8ef456c3fe5807c3d_NeikiAnalytics.exe
Size

89KB
Sample

240620-qzl85szhlb
MD5

8c5cf022252cad18ae4fbe10ab231810
SHA1

3d5cba2f670a34382007236c9bc81ae16f4fbb57
SHA256

6958b883f6c435592a73abbbfb2631a0e50363ab1ace14f8ef456c3fe5807c3d
SHA512

5d66b12697a6e8790d35bcb636349009d71d891a0476178739ed402db21ecabdcf9f8bb2a575ef2760078d677b278af7b909515e6e8da961095eaf7675657245
SSDEEP

768:Qvw9816vhKQLroO4/wQRNrfrunMxVFA3b7gl5:YEGh0oOl2unMxVS3HgX

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  6958b883f6c435592a73abbbfb2631a0e50363ab1ace14f8ef456c3fe5807c3d_NeikiAnalytics.exe
- Size
  
  89KB
- MD5
  
  8c5cf022252cad18ae4fbe10ab231810
- SHA1
  
  3d5cba2f670a34382007236c9bc81ae16f4fbb57
- SHA256
  
  6958b883f6c435592a73abbbfb2631a0e50363ab1ace14f8ef456c3fe5807c3d
- SHA512
  
  5d66b12697a6e8790d35bcb636349009d71d891a0476178739ed402db21ecabdcf9f8bb2a575ef2760078d677b278af7b909515e6e8da961095eaf7675657245
- SSDEEP
  
  768:Qvw9816vhKQLroO4/wQRNrfrunMxVFA3b7gl5:YEGh0oOl2unMxVS3HgX
Score

8^/10

persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2