4c0fbc6e51e450eb977d71f8eb5613450d0d7bfb5a8531ccc29e8ce6e13847a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c0fbc6e51e450eb977d71f8eb5613450d0d7bfb5a8531ccc29e8ce6e13847a9_NeikiAnalytics.exe
Size

988KB
Sample

240701-mvw11axbpd
MD5

f903020cf0c9741aeeace7b4c1925710
SHA1

fe51eba98c9e59544766168642f2d6cb1a6ffa8d
SHA256

4c0fbc6e51e450eb977d71f8eb5613450d0d7bfb5a8531ccc29e8ce6e13847a9
SHA512

37bdddf7672ce9d511dbf6dea21806ca84c4c1b91727ed857f0c2ca30b37b40f2a27c0ee8c8f3e825c87a7ea0c4747a761712a0a23ac87212643f3c8df73584a
SSDEEP

24576:ZnlsaUea64xHvqh5AZo8UUMpvATxCPV8DXTFDSAdEELdDDDCDaD3fXN0VI5sPSTw:Znlva64xHSh5AZo8UUM5MxCPVuXTFDSl

Score

7^/10

Malware Config

Targets

- Target
  
  4c0fbc6e51e450eb977d71f8eb5613450d0d7bfb5a8531ccc29e8ce6e13847a9_NeikiAnalytics.exe
- Size
  
  988KB
- MD5
  
  f903020cf0c9741aeeace7b4c1925710
- SHA1
  
  fe51eba98c9e59544766168642f2d6cb1a6ffa8d
- SHA256
  
  4c0fbc6e51e450eb977d71f8eb5613450d0d7bfb5a8531ccc29e8ce6e13847a9
- SHA512
  
  37bdddf7672ce9d511dbf6dea21806ca84c4c1b91727ed857f0c2ca30b37b40f2a27c0ee8c8f3e825c87a7ea0c4747a761712a0a23ac87212643f3c8df73584a
- SSDEEP
  
  24576:ZnlsaUea64xHvqh5AZo8UUMpvATxCPV8DXTFDSAdEELdDDDCDaD3fXN0VI5sPSTw:Znlva64xHSh5AZo8UUM5MxCPVuXTFDSl
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2