49748deb436bb7c518ec9eadb05e1c73b5178b8f5d876118e0339d7fbb93b16d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

56fa995a8b06d0a837601751081a0e40_NeikiAnalytics
Size

64KB
Sample

240510-dkwg2sfc7z
MD5

56fa995a8b06d0a837601751081a0e40
SHA1

c00d536ea38d563fff872a75517fc6edba43b7b5
SHA256

49748deb436bb7c518ec9eadb05e1c73b5178b8f5d876118e0339d7fbb93b16d
SHA512

912fe9fc94bdadd3886f43899a54051e874839827c93cbc117fbde962c36d860d246aa637d15f94338018f0d023484500441e73c36ec2db68d2bba82c840d326
SSDEEP

1536:q+iPdSBhhT4Z71xEm+uIeeFQWMrjseO6XKhbMbt2:qRShTQYm+uTeF9MPjO6Xjt2

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  56fa995a8b06d0a837601751081a0e40_NeikiAnalytics
- Size
  
  64KB
- MD5
  
  56fa995a8b06d0a837601751081a0e40
- SHA1
  
  c00d536ea38d563fff872a75517fc6edba43b7b5
- SHA256
  
  49748deb436bb7c518ec9eadb05e1c73b5178b8f5d876118e0339d7fbb93b16d
- SHA512
  
  912fe9fc94bdadd3886f43899a54051e874839827c93cbc117fbde962c36d860d246aa637d15f94338018f0d023484500441e73c36ec2db68d2bba82c840d326
- SSDEEP
  
  1536:q+iPdSBhhT4Z71xEm+uIeeFQWMrjseO6XKhbMbt2:qRShTQYm+uTeF9MPjO6Xjt2
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2