67bf22d368e2f601d410cdec39769f2a6ec79bf6bbadbcea5444dc27db7c3de3 | Triage

Sharing

General

Target

17d373670eb86cbf62a0d078a0385830_NeikiAnalytics
Size

406KB
Sample

240510-te6zlaha26
MD5

17d373670eb86cbf62a0d078a0385830
SHA1

b3900542d759e1dc1642e20e433078c70a024d65
SHA256

67bf22d368e2f601d410cdec39769f2a6ec79bf6bbadbcea5444dc27db7c3de3
SHA512

f436e6f83508cf055ed690d7efb5ca4c10cfd1978eb7e903a123fa7c482852262d2a906ea77b4eb101a6fc107b767948079ad902aad1c73fb38d87801c9a3d14
SSDEEP

6144:+N9e3zBaT+U5U5Xj1XH5U5Xj83XH5U1XH5U5Xj8s5DXH5U5qXH5XXH5U5oXH:+NqzB2Mp3Ma3M3MvD3Mq3B3Mo3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  17d373670eb86cbf62a0d078a0385830_NeikiAnalytics
- Size
  
  406KB
- MD5
  
  17d373670eb86cbf62a0d078a0385830
- SHA1
  
  b3900542d759e1dc1642e20e433078c70a024d65
- SHA256
  
  67bf22d368e2f601d410cdec39769f2a6ec79bf6bbadbcea5444dc27db7c3de3
- SHA512
  
  f436e6f83508cf055ed690d7efb5ca4c10cfd1978eb7e903a123fa7c482852262d2a906ea77b4eb101a6fc107b767948079ad902aad1c73fb38d87801c9a3d14
- SSDEEP
  
  6144:+N9e3zBaT+U5U5Xj1XH5U5Xj83XH5U1XH5U5Xj8s5DXH5U5qXH5XXH5U5oXH:+NqzB2Mp3Ma3M3MvD3Mq3B3Mo3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2