b273d8ab0caf029fca0544fefa1064f6301dd16c0e186a01892642d6cd3d6dbc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b273d8ab0caf029fca0544fefa1064f6301dd16c0e186a01892642d6cd3d6dbc_NeikiAnalytics.exe
Size

824KB
Sample

240629-th6s1atfjj
MD5

095517f2ac0274eafb472172c211d030
SHA1

8140fc5a30b01e607c748f239657c613f5faa824
SHA256

b273d8ab0caf029fca0544fefa1064f6301dd16c0e186a01892642d6cd3d6dbc
SHA512

442506576bec82d25de446d8f8c2645dedcac43d25efb63a978e0cc545cf202dac9ced1e77f7dc3780805caf84d3855c182293ccc47f877ac7201464fc390dac
SSDEEP

12288:uwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEh888888888888W8888888J:+NzCtUpQ9WWPBSSRMTEpXNR

Score

7^/10

Malware Config

Targets

- Target
  
  b273d8ab0caf029fca0544fefa1064f6301dd16c0e186a01892642d6cd3d6dbc_NeikiAnalytics.exe
- Size
  
  824KB
- MD5
  
  095517f2ac0274eafb472172c211d030
- SHA1
  
  8140fc5a30b01e607c748f239657c613f5faa824
- SHA256
  
  b273d8ab0caf029fca0544fefa1064f6301dd16c0e186a01892642d6cd3d6dbc
- SHA512
  
  442506576bec82d25de446d8f8c2645dedcac43d25efb63a978e0cc545cf202dac9ced1e77f7dc3780805caf84d3855c182293ccc47f877ac7201464fc390dac
- SSDEEP
  
  12288:uwCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEh888888888888W8888888J:+NzCtUpQ9WWPBSSRMTEpXNR
Score

7^/10
- Drops startup file
- Loads dropped DLL
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2