1fd25d5da080a4c8f804ca90d2004a7e7f8dc827ccefa7f2bbf22cfca5978852 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ddbf2634a1f45ef66926fe00e4dd1be0_NeikiAnalytics
Size

207KB
Sample

240509-yfrnhsbd3w
MD5

ddbf2634a1f45ef66926fe00e4dd1be0
SHA1

74247ada8951e0e215fcd905582ffd3454c6e4df
SHA256

1fd25d5da080a4c8f804ca90d2004a7e7f8dc827ccefa7f2bbf22cfca5978852
SHA512

c712564c8e817297e0b14e50cc58c6536585ad31d2d56e6f9fa338b3287d3a15a242454185878aaa14cb95b3f9420209a6bfbfef1208e604eecff8e135fc085b
SSDEEP

6144:JqHwKlzLY9pWDl25Vjj+VPj92d62ASOwj:ehF09pWRcpIPj92aSOc

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ddbf2634a1f45ef66926fe00e4dd1be0_NeikiAnalytics
- Size
  
  207KB
- MD5
  
  ddbf2634a1f45ef66926fe00e4dd1be0
- SHA1
  
  74247ada8951e0e215fcd905582ffd3454c6e4df
- SHA256
  
  1fd25d5da080a4c8f804ca90d2004a7e7f8dc827ccefa7f2bbf22cfca5978852
- SHA512
  
  c712564c8e817297e0b14e50cc58c6536585ad31d2d56e6f9fa338b3287d3a15a242454185878aaa14cb95b3f9420209a6bfbfef1208e604eecff8e135fc085b
- SSDEEP
  
  6144:JqHwKlzLY9pWDl25Vjj+VPj92d62ASOwj:ehF09pWRcpIPj92aSOc
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2