422568ff8f4136550d1cf128f7ecc1ae445ec4f909130f9d78fa2002607ceaeb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

422568ff8f4136550d1cf128f7ecc1ae445ec4f909130f9d78fa2002607ceaeb_NeikiAnalytics.exe
Size

89KB
Sample

240627-dkgnwssblq
MD5

fad7c493906bae1384218917ca67ba50
SHA1

db66f3efd4cff9726bfe1b0a6d6e2de5fa7701f7
SHA256

422568ff8f4136550d1cf128f7ecc1ae445ec4f909130f9d78fa2002607ceaeb
SHA512

1d8a1abde4e4e67761bc44bacd36874d231363cce5d6499de4f56fd1111afa47685e4f10bf192b24f6c6fc72de4617fe1db96c6cd72ad8942ef45380a5506069
SSDEEP

768:Qvw9816vhKQLroM4/wQRNrfrunMxVFA3b7glL:YEGh0oMl2unMxVS3Hg9

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  422568ff8f4136550d1cf128f7ecc1ae445ec4f909130f9d78fa2002607ceaeb_NeikiAnalytics.exe
- Size
  
  89KB
- MD5
  
  fad7c493906bae1384218917ca67ba50
- SHA1
  
  db66f3efd4cff9726bfe1b0a6d6e2de5fa7701f7
- SHA256
  
  422568ff8f4136550d1cf128f7ecc1ae445ec4f909130f9d78fa2002607ceaeb
- SHA512
  
  1d8a1abde4e4e67761bc44bacd36874d231363cce5d6499de4f56fd1111afa47685e4f10bf192b24f6c6fc72de4617fe1db96c6cd72ad8942ef45380a5506069
- SSDEEP
  
  768:Qvw9816vhKQLroM4/wQRNrfrunMxVFA3b7glL:YEGh0oMl2unMxVS3Hg9
Score

8^/10

persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2