f6aa8f54f1bb4221e1ea23d78e70eba55ee0744382d0948f4163881a9e66b890 | Triage

Sharing

General

Target

225cfc18cf65c7c1e8bb1ce60a8d0250_NeikiAnalytics
Size

1.6MB
Sample

240510-t3g1daab94
MD5

225cfc18cf65c7c1e8bb1ce60a8d0250
SHA1

d1105bfe995ccaafbde07ea0eeb925c8e11a1d13
SHA256

f6aa8f54f1bb4221e1ea23d78e70eba55ee0744382d0948f4163881a9e66b890
SHA512

d6fe960c4c06ea664ca85e34afc75c444947fc7adcf8c2ac04d46c5a28510de42119593a0259265d4157f061ff9eb04b22b8622471ee166eefc132e1e397b5e3
SSDEEP

24576:Pngu5YyCtCCm0BmmvFimm0wh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2Ev3:vgu5RCtCmi7bazR0vKLXZ+Ktz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  225cfc18cf65c7c1e8bb1ce60a8d0250_NeikiAnalytics
- Size
  
  1.6MB
- MD5
  
  225cfc18cf65c7c1e8bb1ce60a8d0250
- SHA1
  
  d1105bfe995ccaafbde07ea0eeb925c8e11a1d13
- SHA256
  
  f6aa8f54f1bb4221e1ea23d78e70eba55ee0744382d0948f4163881a9e66b890
- SHA512
  
  d6fe960c4c06ea664ca85e34afc75c444947fc7adcf8c2ac04d46c5a28510de42119593a0259265d4157f061ff9eb04b22b8622471ee166eefc132e1e397b5e3
- SSDEEP
  
  24576:Pngu5YyCtCCm0BmmvFimm0wh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2Ev3:vgu5RCtCmi7bazR0vKLXZ+Ktz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2