ebee457145473e92faffd78ad7548204ac9d964058056d2ef4765429270ac88d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e3f82240b34a71127b376f0e88da3880_NeikiAnalytics
Size

226KB
Sample

240509-yqtwmabg7t
MD5

e3f82240b34a71127b376f0e88da3880
SHA1

abf74a1644d834ca2e2323cf30837c666c9e5d70
SHA256

ebee457145473e92faffd78ad7548204ac9d964058056d2ef4765429270ac88d
SHA512

8196daf7a2f6fa1a360799510d83b371df043301474a80583925b632a8a80afac3db5d56f107cd322ce2eb4d86e3b39c24318f8b98bdb1babff7139e38b978da
SSDEEP

3072:AsacjFdOde2iYwDKcWmjRvDKcpDKcWmjRrzNtQtjDKcWmjRrzNtb:A8Fd4lJxEtQtsEtb

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e3f82240b34a71127b376f0e88da3880_NeikiAnalytics
- Size
  
  226KB
- MD5
  
  e3f82240b34a71127b376f0e88da3880
- SHA1
  
  abf74a1644d834ca2e2323cf30837c666c9e5d70
- SHA256
  
  ebee457145473e92faffd78ad7548204ac9d964058056d2ef4765429270ac88d
- SHA512
  
  8196daf7a2f6fa1a360799510d83b371df043301474a80583925b632a8a80afac3db5d56f107cd322ce2eb4d86e3b39c24318f8b98bdb1babff7139e38b978da
- SSDEEP
  
  3072:AsacjFdOde2iYwDKcWmjRvDKcpDKcWmjRrzNtQtjDKcWmjRrzNtb:A8Fd4lJxEtQtsEtb
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2