b32de0a611f8a0e9253f6e5bb390b7971e90fdbfa16837a1b9e75d39c76ed607 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b32de0a611f8a0e9253f6e5bb390b7971e90fdbfa16837a1b9e75d39c76ed607_NeikiAnalytics.exe
Size

45KB
Sample

240629-ty4cta1dpb
MD5

e7df16eee96cda40ba5df3519cbf1660
SHA1

6287b374a06fb0e069978d3f692f6851cd1e5f95
SHA256

b32de0a611f8a0e9253f6e5bb390b7971e90fdbfa16837a1b9e75d39c76ed607
SHA512

c4345e05dbc174b3904b1c0ad468165825ecc7caa1fd6181ae06994c62199a6714e2c9c1dc79de6af20233284fd8d1a572d04f46a23cf44c6328b65db42e79b2
SSDEEP

768:8V5hy+7c6OXdfwEQ90NoZCi5TXbRzjEDta8jFqjsZvI2YxrQiP+ZRDd+RYTl/iUy:8h7xsCKosi5pzjIcdRiTpqMGxs3C

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  b32de0a611f8a0e9253f6e5bb390b7971e90fdbfa16837a1b9e75d39c76ed607_NeikiAnalytics.exe
- Size
  
  45KB
- MD5
  
  e7df16eee96cda40ba5df3519cbf1660
- SHA1
  
  6287b374a06fb0e069978d3f692f6851cd1e5f95
- SHA256
  
  b32de0a611f8a0e9253f6e5bb390b7971e90fdbfa16837a1b9e75d39c76ed607
- SHA512
  
  c4345e05dbc174b3904b1c0ad468165825ecc7caa1fd6181ae06994c62199a6714e2c9c1dc79de6af20233284fd8d1a572d04f46a23cf44c6328b65db42e79b2
- SSDEEP
  
  768:8V5hy+7c6OXdfwEQ90NoZCi5TXbRzjEDta8jFqjsZvI2YxrQiP+ZRDd+RYTl/iUy:8h7xsCKosi5pzjIcdRiTpqMGxs3C
Score

8^/10

persistence
- Event Triggered Execution: Image File Execution Options Injection
  persistence
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Image File Execution Options Injection

Privilege Escalation

Event Triggered Execution

Change Default File Association

Image File Execution Options Injection

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2