3bbd3f80dec9b69018c9a0edce4c6734c787e570debfd1c6eac5c3adb059355b | Triage

Sharing

General

Target

3bbd3f80dec9b69018c9a0edce4c6734c787e570debfd1c6eac5c3adb059355b_NeikiAnalytics.exe
Size

36KB
Sample

240625-hepjrsvfjf
MD5

715beb2919894e0395abbe691057dcd0
SHA1

cb2b19831357f481d14d633cdcba17a7ab0a0576
SHA256

3bbd3f80dec9b69018c9a0edce4c6734c787e570debfd1c6eac5c3adb059355b
SHA512

3d345a102b98bffeca3283961cdc96749fad7f9a2da4992b48071602ee937b0c43759540b6c629158e29cf6f2bf39631b8bdc494ef025db42c83a9bbdcb05d7c
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYg

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3bbd3f80dec9b69018c9a0edce4c6734c787e570debfd1c6eac5c3adb059355b_NeikiAnalytics.exe
- Size
  
  36KB
- MD5
  
  715beb2919894e0395abbe691057dcd0
- SHA1
  
  cb2b19831357f481d14d633cdcba17a7ab0a0576
- SHA256
  
  3bbd3f80dec9b69018c9a0edce4c6734c787e570debfd1c6eac5c3adb059355b
- SHA512
  
  3d345a102b98bffeca3283961cdc96749fad7f9a2da4992b48071602ee937b0c43759540b6c629158e29cf6f2bf39631b8bdc494ef025db42c83a9bbdcb05d7c
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYg
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2