a3970a3adafff816c3a4433cf21b6588ba32c7e02157142ee6b6d7713952ff1e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eeb51f4905bb701ee62d9fce489d76f0_NeikiAnalytics
Size

469KB
Sample

240510-rj2jkadd57
MD5

eeb51f4905bb701ee62d9fce489d76f0
SHA1

7603d20c5d78cd4c73abe2f91fa64a15dbd846d5
SHA256

a3970a3adafff816c3a4433cf21b6588ba32c7e02157142ee6b6d7713952ff1e
SHA512

8064b073cf121a4e02a0f9eb20b32bcee9b89bbfebec348b4cbe5188b898963d905c853ad4643d5cc4cff1039092b0a4755a50499cc42ce86f3c867f270eb1a8
SSDEEP

6144:7UkWcDpi78KSrafqV5areuyFwBqgmGNGXN/O8OCLRmySCV/h1dg1+eAJfjQemZTw:7Ulc87eqqV5e+wBV6O+TXWYB5mZQue

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  eeb51f4905bb701ee62d9fce489d76f0_NeikiAnalytics
- Size
  
  469KB
- MD5
  
  eeb51f4905bb701ee62d9fce489d76f0
- SHA1
  
  7603d20c5d78cd4c73abe2f91fa64a15dbd846d5
- SHA256
  
  a3970a3adafff816c3a4433cf21b6588ba32c7e02157142ee6b6d7713952ff1e
- SHA512
  
  8064b073cf121a4e02a0f9eb20b32bcee9b89bbfebec348b4cbe5188b898963d905c853ad4643d5cc4cff1039092b0a4755a50499cc42ce86f3c867f270eb1a8
- SSDEEP
  
  6144:7UkWcDpi78KSrafqV5areuyFwBqgmGNGXN/O8OCLRmySCV/h1dg1+eAJfjQemZTw:7Ulc87eqqV5e+wBV6O+TXWYB5mZQue
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2