4e6c6a464f4d19412830e67655dda57c3c8fad53a4442bf8f870a408e22f4c53 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4e6c6a464f4d19412830e67655dda57c3c8fad53a4442bf8f870a408e22f4c53_NeikiAnalytics.exe
Size

42KB
Sample

240625-lh6t1avdmk
MD5

d685b181e42f820e3dc7bfd4cac3ad20
SHA1

2c5e69a4adbb336dbfe99d7f5d4dc4c0d7f3d285
SHA256

4e6c6a464f4d19412830e67655dda57c3c8fad53a4442bf8f870a408e22f4c53
SHA512

afae3467874bf843b658b4f2705dca17fb37e038b2db14144afddf2e907df11bc70c697adcd026c32719e11ddc9fd9da81b4c110c0bd1d581100dfbba9208f24
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhY:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wY4

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  4e6c6a464f4d19412830e67655dda57c3c8fad53a4442bf8f870a408e22f4c53_NeikiAnalytics.exe
- Size
  
  42KB
- MD5
  
  d685b181e42f820e3dc7bfd4cac3ad20
- SHA1
  
  2c5e69a4adbb336dbfe99d7f5d4dc4c0d7f3d285
- SHA256
  
  4e6c6a464f4d19412830e67655dda57c3c8fad53a4442bf8f870a408e22f4c53
- SHA512
  
  afae3467874bf843b658b4f2705dca17fb37e038b2db14144afddf2e907df11bc70c697adcd026c32719e11ddc9fd9da81b4c110c0bd1d581100dfbba9208f24
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhY:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wY4
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2