f03eac2f6f85d75400c2dafec87bacfa8a5786976cbf2e11145725a91c60a003 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b86ec0d0a5e7b40e1188fc98a881b700_NeikiAnalytics
Size

302KB
Sample

240509-wq4dysae53
MD5

b86ec0d0a5e7b40e1188fc98a881b700
SHA1

b6549e7feed1b8891946cef95f390fbe9b4f0477
SHA256

f03eac2f6f85d75400c2dafec87bacfa8a5786976cbf2e11145725a91c60a003
SHA512

9c4606726e6b0b5d3cb0c22c762368583c69531331cece986c31484c775f7f6729920841e514613491e654a25cfe546db25c2b5b640b479acb12e3358f94205a
SSDEEP

6144:5CpzWAcyrok3FF7fPtcsw6UJZqktbOUqCTGepXgbWH:jLa/3FF7fFcsw6UJZqktbDqCTGepXgbW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b86ec0d0a5e7b40e1188fc98a881b700_NeikiAnalytics
- Size
  
  302KB
- MD5
  
  b86ec0d0a5e7b40e1188fc98a881b700
- SHA1
  
  b6549e7feed1b8891946cef95f390fbe9b4f0477
- SHA256
  
  f03eac2f6f85d75400c2dafec87bacfa8a5786976cbf2e11145725a91c60a003
- SHA512
  
  9c4606726e6b0b5d3cb0c22c762368583c69531331cece986c31484c775f7f6729920841e514613491e654a25cfe546db25c2b5b640b479acb12e3358f94205a
- SSDEEP
  
  6144:5CpzWAcyrok3FF7fPtcsw6UJZqktbOUqCTGepXgbWH:jLa/3FF7fFcsw6UJZqktbDqCTGepXgbW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2