f73e1f0f361ba374e73e93c54acc372d7dc5bbdf038917f37a3882086e3b0630 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a7eae2cceaf9def3ee5c0f7c3eead090_NeikiAnalytics
Size

109KB
Sample

240510-jtqwtafa42
MD5

a7eae2cceaf9def3ee5c0f7c3eead090
SHA1

6976452a8a912e9621291a2361c5ca21cf8abf01
SHA256

f73e1f0f361ba374e73e93c54acc372d7dc5bbdf038917f37a3882086e3b0630
SHA512

5915340de678bf785f837692d8da6e987789c75ee5962fcc2786b5cf1341c7961c23e42d0b2e4ec865caf7b8f21bfee1f5c8e3a31709650303a7dc70ee6228e1
SSDEEP

3072:H7AkE/hHWWievTSPmvJ2g148fo3PXl9Z7S/yCsKh2EzZA/z:bAfVTem4go35e/yCthvUz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a7eae2cceaf9def3ee5c0f7c3eead090_NeikiAnalytics
- Size
  
  109KB
- MD5
  
  a7eae2cceaf9def3ee5c0f7c3eead090
- SHA1
  
  6976452a8a912e9621291a2361c5ca21cf8abf01
- SHA256
  
  f73e1f0f361ba374e73e93c54acc372d7dc5bbdf038917f37a3882086e3b0630
- SHA512
  
  5915340de678bf785f837692d8da6e987789c75ee5962fcc2786b5cf1341c7961c23e42d0b2e4ec865caf7b8f21bfee1f5c8e3a31709650303a7dc70ee6228e1
- SSDEEP
  
  3072:H7AkE/hHWWievTSPmvJ2g148fo3PXl9Z7S/yCsKh2EzZA/z:bAfVTem4go35e/yCthvUz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2