335a618d23c582687daf00549b887fa6c3cbef9ccc3b06fd0226117536f0eb7a | Triage

Sharing

General

Target

335a618d23c582687daf00549b887fa6c3cbef9ccc3b06fd0226117536f0eb7a_NeikiAnalytics.exe
Size

440KB
Sample

240701-eevh8syelk
MD5

0df8d60012b178b77ee2ed9f5d321b90
SHA1

4ed49e581e5e69a47680ecce9f6482320e1b421b
SHA256

335a618d23c582687daf00549b887fa6c3cbef9ccc3b06fd0226117536f0eb7a
SHA512

3435114a5f15ccb2dc912499a7641cf7725eba529f31c83c080587619ca9026ce53fa393d56b2a4ab54a20eed5e3a535d7ac8041695c1c0495d10a6fd52ef0fa
SSDEEP

12288:JHhftsvpSfCludXukNtI0hslOYlTMLW9l4h19Tzk0:JHySxd+k/hWTl439TT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  335a618d23c582687daf00549b887fa6c3cbef9ccc3b06fd0226117536f0eb7a_NeikiAnalytics.exe
- Size
  
  440KB
- MD5
  
  0df8d60012b178b77ee2ed9f5d321b90
- SHA1
  
  4ed49e581e5e69a47680ecce9f6482320e1b421b
- SHA256
  
  335a618d23c582687daf00549b887fa6c3cbef9ccc3b06fd0226117536f0eb7a
- SHA512
  
  3435114a5f15ccb2dc912499a7641cf7725eba529f31c83c080587619ca9026ce53fa393d56b2a4ab54a20eed5e3a535d7ac8041695c1c0495d10a6fd52ef0fa
- SSDEEP
  
  12288:JHhftsvpSfCludXukNtI0hslOYlTMLW9l4h19Tzk0:JHySxd+k/hWTl439TT
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2