5dab51efdb192b533e803918d4c72ee4e29c79427a0aaddc9ef89799db2b3727 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ec69bffa584222d25a59a6ca7283580_NeikiAnalytics
Size

91KB
Sample

240510-1k6pcaec48
MD5

0ec69bffa584222d25a59a6ca7283580
SHA1

9dffdff66a61e307acb87794976ec059e03e282d
SHA256

5dab51efdb192b533e803918d4c72ee4e29c79427a0aaddc9ef89799db2b3727
SHA512

3706852eaa2d76ddd0b5b46b29fe957b7cbaa85b9c009844b06c52132ed8a0506c99cb1cd73191ad5e8c9720ce29914c2d51b7246d1623f379ca0915a4f5d870
SSDEEP

1536:Hlqls0GgUyj5JxdA4Oj3W2Fsdq4FWG+sdguxnSngBNpT/mzNnxPAxEAz0+/Sn:HQC/yj5JO3MnWG+Hu54Fx4xE8qn

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0ec69bffa584222d25a59a6ca7283580_NeikiAnalytics
- Size
  
  91KB
- MD5
  
  0ec69bffa584222d25a59a6ca7283580
- SHA1
  
  9dffdff66a61e307acb87794976ec059e03e282d
- SHA256
  
  5dab51efdb192b533e803918d4c72ee4e29c79427a0aaddc9ef89799db2b3727
- SHA512
  
  3706852eaa2d76ddd0b5b46b29fe957b7cbaa85b9c009844b06c52132ed8a0506c99cb1cd73191ad5e8c9720ce29914c2d51b7246d1623f379ca0915a4f5d870
- SSDEEP
  
  1536:Hlqls0GgUyj5JxdA4Oj3W2Fsdq4FWG+sdguxnSngBNpT/mzNnxPAxEAz0+/Sn:HQC/yj5JO3MnWG+Hu54Fx4xE8qn
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2