0a1888db2c58e6f7b782f6649008cecf75bd64a8ca1e02ef9507a8c729ca015a | Triage

Sharing

General

Target

0a1888db2c58e6f7b782f6649008cecf75bd64a8ca1e02ef9507a8c729ca015a_NeikiAnalytics.exe
Size

45KB
Sample

240701-z8jn2svakj
MD5

f3d21fdcbcaf3c599398191a31c9c5e0
SHA1

9fb680981ca1b31f641991b1014df6093a0753e3
SHA256

0a1888db2c58e6f7b782f6649008cecf75bd64a8ca1e02ef9507a8c729ca015a
SHA512

aa4cd6032c257c7ecbf0453dddfd758bfb393f5d1c0906e392bfcf631ec16f36398b92d123856dfae8fb8bd6e01325bfa6b988ca5bbaffef5964f2c97b3bc0d5
SSDEEP

768:8V5hy+7c6OXdfwEQ90NoZCi5TXbRzjEDta8jFqjsZvI2YxrQiP+ZRDd+RYTl/iU7:8h7xsCKosi5pzjIcdRiTpqMGxs3Eq

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0a1888db2c58e6f7b782f6649008cecf75bd64a8ca1e02ef9507a8c729ca015a_NeikiAnalytics.exe
- Size
  
  45KB
- MD5
  
  f3d21fdcbcaf3c599398191a31c9c5e0
- SHA1
  
  9fb680981ca1b31f641991b1014df6093a0753e3
- SHA256
  
  0a1888db2c58e6f7b782f6649008cecf75bd64a8ca1e02ef9507a8c729ca015a
- SHA512
  
  aa4cd6032c257c7ecbf0453dddfd758bfb393f5d1c0906e392bfcf631ec16f36398b92d123856dfae8fb8bd6e01325bfa6b988ca5bbaffef5964f2c97b3bc0d5
- SSDEEP
  
  768:8V5hy+7c6OXdfwEQ90NoZCi5TXbRzjEDta8jFqjsZvI2YxrQiP+ZRDd+RYTl/iU7:8h7xsCKosi5pzjIcdRiTpqMGxs3Eq
Score

8^/10

persistence
- Event Triggered Execution: Image File Execution Options Injection
  persistence
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Image File Execution Options Injection

Privilege Escalation

Event Triggered Execution

Change Default File Association

Image File Execution Options Injection

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2