0e88708b89aaab3073ef5dbd8dc252bd5e8c21bcefdfd2cb4ab68c38b906ac38 | Triage

Sharing

General

Target

0e88708b89aaab3073ef5dbd8dc252bd5e8c21bcefdfd2cb4ab68c38b906ac38_NeikiAnalytics.exe
Size

45KB
Sample

240629-3rn4zstakm
MD5

0cce11903b78f49e5bb4204dfa1a3ae0
SHA1

c9c9be3a81f62d52a92371396cd120470e14f0b8
SHA256

0e88708b89aaab3073ef5dbd8dc252bd5e8c21bcefdfd2cb4ab68c38b906ac38
SHA512

d856fdfe3f7c85365fee19ecbf117bd1cfaa57ffb4dea46c3c09308c9488fae95b549b949074fb1ee4aea062a32d7bfcee02572a5168a64ccfdf9e974e7c7568
SSDEEP

768:8V5hy+7c6OXdfwEQ90NoZCi5TXbRzjEDta8jFqjsZvI2YxrQiP+ZRDd+RYTl/iUE:8h7xsCKosi5pzjIcdRiTpqMGxs30

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0e88708b89aaab3073ef5dbd8dc252bd5e8c21bcefdfd2cb4ab68c38b906ac38_NeikiAnalytics.exe
- Size
  
  45KB
- MD5
  
  0cce11903b78f49e5bb4204dfa1a3ae0
- SHA1
  
  c9c9be3a81f62d52a92371396cd120470e14f0b8
- SHA256
  
  0e88708b89aaab3073ef5dbd8dc252bd5e8c21bcefdfd2cb4ab68c38b906ac38
- SHA512
  
  d856fdfe3f7c85365fee19ecbf117bd1cfaa57ffb4dea46c3c09308c9488fae95b549b949074fb1ee4aea062a32d7bfcee02572a5168a64ccfdf9e974e7c7568
- SSDEEP
  
  768:8V5hy+7c6OXdfwEQ90NoZCi5TXbRzjEDta8jFqjsZvI2YxrQiP+ZRDd+RYTl/iUE:8h7xsCKosi5pzjIcdRiTpqMGxs30
Score

8^/10

persistence
- Event Triggered Execution: Image File Execution Options Injection
  persistence
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Image File Execution Options Injection

Privilege Escalation

Event Triggered Execution

Change Default File Association

Image File Execution Options Injection

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2