156fdfc035c59f6a634410cdb0e87452e8d9f48f6a88c889dcdc88941abbe853 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85aaa2084250012a6d10a63c373f67f0_NeikiAnalytics
Size

90KB
Sample

240509-tqedqadh49
MD5

85aaa2084250012a6d10a63c373f67f0
SHA1

eedb2ed3652443a7c765a5a494cd350ad9127e76
SHA256

156fdfc035c59f6a634410cdb0e87452e8d9f48f6a88c889dcdc88941abbe853
SHA512

e214a2c4def5bed8461537184251fb80f87003297891f988d7ec79dd898339556a864ebfcfdd401691573e21f626f91102bb1f895b14d52701d969baad4ec6cf
SSDEEP

1536:C1cP1cQOVSVphk7RaY9s2aFT16qKBRGPAu/Ub0VkVNK:CYiQ3VQ77t3dGIu/Ub0+NK

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  85aaa2084250012a6d10a63c373f67f0_NeikiAnalytics
- Size
  
  90KB
- MD5
  
  85aaa2084250012a6d10a63c373f67f0
- SHA1
  
  eedb2ed3652443a7c765a5a494cd350ad9127e76
- SHA256
  
  156fdfc035c59f6a634410cdb0e87452e8d9f48f6a88c889dcdc88941abbe853
- SHA512
  
  e214a2c4def5bed8461537184251fb80f87003297891f988d7ec79dd898339556a864ebfcfdd401691573e21f626f91102bb1f895b14d52701d969baad4ec6cf
- SSDEEP
  
  1536:C1cP1cQOVSVphk7RaY9s2aFT16qKBRGPAu/Ub0VkVNK:CYiQ3VQ77t3dGIu/Ub0+NK
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2