0e12221db9d901c1160c225df6cffa628295acaa97f0aeedcf27f4a763f9ca4a | Triage

Sharing

General

Target

0e12221db9d901c1160c225df6cffa628295acaa97f0aeedcf27f4a763f9ca4a_NeikiAnalytics.exe
Size

38KB
Sample

240625-zr3qlavgnj
MD5

7bcacfde24243fdc015bbf29cd6ea230
SHA1

5d59e530f7934c99cc0f82327dad8c4efb5fb4f0
SHA256

0e12221db9d901c1160c225df6cffa628295acaa97f0aeedcf27f4a763f9ca4a
SHA512

8216b395ec45e16b230a6340b42a8c6594f20b0e7a4d56f77a429485eaf64a54aa6e4e0294bca1b2f94c0f9781c3026e977c448ce61a42c042c68e0a5281aa8b
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh6:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYa

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  0e12221db9d901c1160c225df6cffa628295acaa97f0aeedcf27f4a763f9ca4a_NeikiAnalytics.exe
- Size
  
  38KB
- MD5
  
  7bcacfde24243fdc015bbf29cd6ea230
- SHA1
  
  5d59e530f7934c99cc0f82327dad8c4efb5fb4f0
- SHA256
  
  0e12221db9d901c1160c225df6cffa628295acaa97f0aeedcf27f4a763f9ca4a
- SHA512
  
  8216b395ec45e16b230a6340b42a8c6594f20b0e7a4d56f77a429485eaf64a54aa6e4e0294bca1b2f94c0f9781c3026e977c448ce61a42c042c68e0a5281aa8b
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh6:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYa
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2