d12579cde7407f9f5f1508912a900784fec9c2ec87c7a6d7e2a6b37641063d65 | Triage

Sharing

General

Target

24d12af7af510369b55f3ab9f1a73ec0_NeikiAnalytics
Size

391KB
Sample

240509-3xknrahf64
MD5

24d12af7af510369b55f3ab9f1a73ec0
SHA1

b5266298226ba0a37a3b3bcbbe5977ad4f52e1cc
SHA256

d12579cde7407f9f5f1508912a900784fec9c2ec87c7a6d7e2a6b37641063d65
SHA512

3b9d32004d6b85f012dc5858f8b5f98beb85099526a88721b35996395522aeb4f1faeb6febd32d0362df01852a9d0e04c1be55a760f75b15f42a132d9405b1e2
SSDEEP

6144:6WcmUFrqsotaAfbAfNtTAfMAfFAfNPUmKyIxLfYeOO9UmKyIxL:H6FumNtuhUNP3cOK3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  24d12af7af510369b55f3ab9f1a73ec0_NeikiAnalytics
- Size
  
  391KB
- MD5
  
  24d12af7af510369b55f3ab9f1a73ec0
- SHA1
  
  b5266298226ba0a37a3b3bcbbe5977ad4f52e1cc
- SHA256
  
  d12579cde7407f9f5f1508912a900784fec9c2ec87c7a6d7e2a6b37641063d65
- SHA512
  
  3b9d32004d6b85f012dc5858f8b5f98beb85099526a88721b35996395522aeb4f1faeb6febd32d0362df01852a9d0e04c1be55a760f75b15f42a132d9405b1e2
- SSDEEP
  
  6144:6WcmUFrqsotaAfbAfNtTAfMAfFAfNPUmKyIxLfYeOO9UmKyIxL:H6FumNtuhUNP3cOK3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2