108f67c26985b31d49a9a971cba445dc391b4bcc2634f195e5eb8703d4298a8f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4d7ed0dc902b3bc7beac409a191f160_NeikiAnalytics
Size

45KB
Sample

240510-lbk9qaeg3v
MD5

b4d7ed0dc902b3bc7beac409a191f160
SHA1

c3645756077e2927e0dedf15fc76f5d7caeadea6
SHA256

108f67c26985b31d49a9a971cba445dc391b4bcc2634f195e5eb8703d4298a8f
SHA512

c7a55672c69dce082678406e1e2737d0d080ba616217ddd2b6939b23598e8366dbdfba5a1cca3e37f02a31472baebe6b7d47bc4e72a95cd5fd5987a80488ce0e
SSDEEP

768:4vrc7FRmanH9orXFbGaeLOmwxv9lfvaPy/dB/1H5:l7zm4GTFbGax79pSPG7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b4d7ed0dc902b3bc7beac409a191f160_NeikiAnalytics
- Size
  
  45KB
- MD5
  
  b4d7ed0dc902b3bc7beac409a191f160
- SHA1
  
  c3645756077e2927e0dedf15fc76f5d7caeadea6
- SHA256
  
  108f67c26985b31d49a9a971cba445dc391b4bcc2634f195e5eb8703d4298a8f
- SHA512
  
  c7a55672c69dce082678406e1e2737d0d080ba616217ddd2b6939b23598e8366dbdfba5a1cca3e37f02a31472baebe6b7d47bc4e72a95cd5fd5987a80488ce0e
- SSDEEP
  
  768:4vrc7FRmanH9orXFbGaeLOmwxv9lfvaPy/dB/1H5:l7zm4GTFbGax79pSPG7
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2