503dd5f68608fa53d2af2c3126a2e21a754ee5189d63e41c545b087e35586991 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

503dd5f68608fa53d2af2c3126a2e21a754ee5189d63e41c545b087e35586991_NeikiAnalytics.exe
Size

8KB
Sample

240701-n4jmpstdkl
MD5

b75c557ba18bfb27e7bea86c55b87ff0
SHA1

885029ab38c8cc6f97e2172e4bc69804a90ed3e0
SHA256

503dd5f68608fa53d2af2c3126a2e21a754ee5189d63e41c545b087e35586991
SHA512

63eab3a5478af5b1aac37205da32c29ad547a3350fb8861fdd4a0285a133c26c5294d1063810b5f687618ddd47dca3363a8d11032f395ce2b749f4d7502f945c
SSDEEP

192:Oh4SFyvWohE5xf6YUBSL63SUJqtMblWN:OO+ohE2B13NJqtM

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  503dd5f68608fa53d2af2c3126a2e21a754ee5189d63e41c545b087e35586991_NeikiAnalytics.exe
- Size
  
  8KB
- MD5
  
  b75c557ba18bfb27e7bea86c55b87ff0
- SHA1
  
  885029ab38c8cc6f97e2172e4bc69804a90ed3e0
- SHA256
  
  503dd5f68608fa53d2af2c3126a2e21a754ee5189d63e41c545b087e35586991
- SHA512
  
  63eab3a5478af5b1aac37205da32c29ad547a3350fb8861fdd4a0285a133c26c5294d1063810b5f687618ddd47dca3363a8d11032f395ce2b749f4d7502f945c
- SSDEEP
  
  192:Oh4SFyvWohE5xf6YUBSL63SUJqtMblWN:OO+ohE2B13NJqtM
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2