593c03cf3a199cb8b5bfc484d826fc3b269c416a49cac7f79bef45de70cc3480 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e3bee6d4ae419556519f8635bdadd800_NeikiAnalytics
Size

187KB
Sample

240509-yqpxnsbg6w
MD5

e3bee6d4ae419556519f8635bdadd800
SHA1

ef07742727b24ec9bcdff0ded1acaf8f5a9131d9
SHA256

593c03cf3a199cb8b5bfc484d826fc3b269c416a49cac7f79bef45de70cc3480
SHA512

5e3587cd91985ee4f2de44f8fc38e946f0be9285bd6bb096842cc842adb2edf9bd24e6a058675c757b40d52fa8e6a3588dbfdd3e753116a84a6f87532f630f37
SSDEEP

3072:oAq/W7ei2ufz28CWpaakfIMGh4kjVgtRQ2c+tlB5xpWJLM77OkeCK2+hDueH:1wWS8CqaaqcSkjV+tbFOLM77OLLt

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e3bee6d4ae419556519f8635bdadd800_NeikiAnalytics
- Size
  
  187KB
- MD5
  
  e3bee6d4ae419556519f8635bdadd800
- SHA1
  
  ef07742727b24ec9bcdff0ded1acaf8f5a9131d9
- SHA256
  
  593c03cf3a199cb8b5bfc484d826fc3b269c416a49cac7f79bef45de70cc3480
- SHA512
  
  5e3587cd91985ee4f2de44f8fc38e946f0be9285bd6bb096842cc842adb2edf9bd24e6a058675c757b40d52fa8e6a3588dbfdd3e753116a84a6f87532f630f37
- SSDEEP
  
  3072:oAq/W7ei2ufz28CWpaakfIMGh4kjVgtRQ2c+tlB5xpWJLM77OkeCK2+hDueH:1wWS8CqaaqcSkjV+tbFOLM77OLLt
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2