Overview

overview

6

Static

static

1

342e4c5558...cs.exe

windows7-x64

6

342e4c5558...cs.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    342e4c5558f96ae0d5da658a3a8264967039285079611c26ace2cf950a8b0ea2_NeikiAnalytics.exe

  • Size

    85KB

  • Sample

    240701-ep14rsygpn

  • MD5

    5a81bc1750bc9785b3aefa3de0c58340

  • SHA1

    29fcf5b7272b36ea48d9b8252d610e7d17de1a21

  • SHA256

    342e4c5558f96ae0d5da658a3a8264967039285079611c26ace2cf950a8b0ea2

  • SHA512

    0fc4c21c8ec1b470a04eb6955a451dfcd0a1c8835ccb0ec290a4252d5240ac3d1b4debd9bd6ef154f7d3706393ace7b2de4367c4a16dac0f161e012d62ebff9b

  • SSDEEP

    1536:ldd0YXOQFinmQH+iSfBgE78/thOYsuN7htqisKldR:tXnemQeiSZgC8/7OYsuN7bnV

Score
6/10
persistence

Malware Config

Targets

    • Target

      342e4c5558f96ae0d5da658a3a8264967039285079611c26ace2cf950a8b0ea2_NeikiAnalytics.exe

    • Size

      85KB

    • MD5

      5a81bc1750bc9785b3aefa3de0c58340

    • SHA1

      29fcf5b7272b36ea48d9b8252d610e7d17de1a21

    • SHA256

      342e4c5558f96ae0d5da658a3a8264967039285079611c26ace2cf950a8b0ea2

    • SHA512

      0fc4c21c8ec1b470a04eb6955a451dfcd0a1c8835ccb0ec290a4252d5240ac3d1b4debd9bd6ef154f7d3706393ace7b2de4367c4a16dac0f161e012d62ebff9b

    • SSDEEP

      1536:ldd0YXOQFinmQH+iSfBgE78/thOYsuN7htqisKldR:tXnemQeiSZgC8/7OYsuN7bnV

    Score
    6/10
    persistence

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks