Overview

overview

10

Static

static

3

31f5cd3464...cs.exe

windows7-x64

10

31f5cd3464...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    31f5cd3464961196f73c7b09c9908e52f1579b44d35c097f7c4503b0c76148ca_NeikiAnalytics.exe

  • Size

    208KB

  • Sample

    240701-dzq6wayaqr

  • MD5

    3974785520622e1b10498b4a0f45ac30

  • SHA1

    2def0591e94d7d4552170a58c92b4fce98f5ff61

  • SHA256

    31f5cd3464961196f73c7b09c9908e52f1579b44d35c097f7c4503b0c76148ca

  • SHA512

    16edde38a2605ac2945d0c9984c9b444a06146ac837a87543a0d3f6b684ac55501e7510358d024dc729b53e44a542267a14bff3c3df6e829f87e248ee514d3a8

  • SSDEEP

    3072:PpGqH9kgJz0wD1G5AC6+oXO56hKpi9poF5aY6+oocpGHHQnNJuIb:MqH9kgOwg5Ar+Eu6QnFw5+0pU8b

Score
10/10
persistence

Malware Config

Targets

    • Target

      31f5cd3464961196f73c7b09c9908e52f1579b44d35c097f7c4503b0c76148ca_NeikiAnalytics.exe

    • Size

      208KB

    • MD5

      3974785520622e1b10498b4a0f45ac30

    • SHA1

      2def0591e94d7d4552170a58c92b4fce98f5ff61

    • SHA256

      31f5cd3464961196f73c7b09c9908e52f1579b44d35c097f7c4503b0c76148ca

    • SHA512

      16edde38a2605ac2945d0c9984c9b444a06146ac837a87543a0d3f6b684ac55501e7510358d024dc729b53e44a542267a14bff3c3df6e829f87e248ee514d3a8

    • SSDEEP

      3072:PpGqH9kgJz0wD1G5AC6+oXO56hKpi9poF5aY6+oocpGHHQnNJuIb:MqH9kgOwg5Ar+Eu6QnFw5+0pU8b

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks