a28a6eb2c8da3442017630757606739f938dd9751091e3f2a0932c371a193e56 | Triage

Sharing

General

Target

a28a6eb2c8da3442017630757606739f938dd9751091e3f2a0932c371a193e56_NeikiAnalytics.exe
Size

37KB
Sample

240628-vqhltazfpm
MD5

fa00ce41b7df5ede18b803c9343b62b0
SHA1

95745f7340ecf5ba5ce78cf2cd45d62e0cad039b
SHA256

a28a6eb2c8da3442017630757606739f938dd9751091e3f2a0932c371a193e56
SHA512

065a53af2f56e97fe23bc307b804d0f033e0fec4605ac1a3f99ecc3fed516a40d29700c8753a99d83212f8fb7d08ec0fc86afb1894e294ff024f6327425d20d4
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhF:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYl

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  a28a6eb2c8da3442017630757606739f938dd9751091e3f2a0932c371a193e56_NeikiAnalytics.exe
- Size
  
  37KB
- MD5
  
  fa00ce41b7df5ede18b803c9343b62b0
- SHA1
  
  95745f7340ecf5ba5ce78cf2cd45d62e0cad039b
- SHA256
  
  a28a6eb2c8da3442017630757606739f938dd9751091e3f2a0932c371a193e56
- SHA512
  
  065a53af2f56e97fe23bc307b804d0f033e0fec4605ac1a3f99ecc3fed516a40d29700c8753a99d83212f8fb7d08ec0fc86afb1894e294ff024f6327425d20d4
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhF:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYl
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2