93d5bbf61a9ca393493e81441413f1e28326e8233e8ac01539a383d10e33b9af | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93d5bbf61a9ca393493e81441413f1e28326e8233e8ac01539a383d10e33b9af_NeikiAnalytics.exe
Size

35KB
Sample

240624-vprs4atcjg
MD5

272d5f27980fcf7138c51d7730c0a350
SHA1

6f3371b7a689cf362530f42ee543a036926ab820
SHA256

93d5bbf61a9ca393493e81441413f1e28326e8233e8ac01539a383d10e33b9af
SHA512

be087d8d63e1d35ce3f515f0895f3d653854ff86704695af3b2a94fab4cf7a0905074f79248a4779aa6fb3d2d7c10c653d1435a5390073b794c4bd323eb2eb57
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh4:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYY

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  93d5bbf61a9ca393493e81441413f1e28326e8233e8ac01539a383d10e33b9af_NeikiAnalytics.exe
- Size
  
  35KB
- MD5
  
  272d5f27980fcf7138c51d7730c0a350
- SHA1
  
  6f3371b7a689cf362530f42ee543a036926ab820
- SHA256
  
  93d5bbf61a9ca393493e81441413f1e28326e8233e8ac01539a383d10e33b9af
- SHA512
  
  be087d8d63e1d35ce3f515f0895f3d653854ff86704695af3b2a94fab4cf7a0905074f79248a4779aa6fb3d2d7c10c653d1435a5390073b794c4bd323eb2eb57
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh4:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYY
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2