2d999d703ac28af4b15f23055a90113b3f3ca48e3025893c1bb85e1a7054717f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5207645c0f692a3e3f9246af8c6777b0_NeikiAnalytics
Size

71KB
Sample

240511-ca3b6shc86
MD5

5207645c0f692a3e3f9246af8c6777b0
SHA1

c85dda9651de0278941394e64a9439f392c3b983
SHA256

2d999d703ac28af4b15f23055a90113b3f3ca48e3025893c1bb85e1a7054717f
SHA512

f38cd5bcd4bed631353fad60048d68d5c326b840cd7e6ffef8bd77e703e73b81a78ce0c8ffa0fc0cefa65e982ed9be4837ae89d4224f04018def27df92db148f
SSDEEP

1536:f5y+NrlB8Da2ivJHK7iRyVbuNMVrIvcOT1pYRQtDbEyRCRRRoR4Rk:nxlKezyduqy5TPYeBEy032ya

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5207645c0f692a3e3f9246af8c6777b0_NeikiAnalytics
- Size
  
  71KB
- MD5
  
  5207645c0f692a3e3f9246af8c6777b0
- SHA1
  
  c85dda9651de0278941394e64a9439f392c3b983
- SHA256
  
  2d999d703ac28af4b15f23055a90113b3f3ca48e3025893c1bb85e1a7054717f
- SHA512
  
  f38cd5bcd4bed631353fad60048d68d5c326b840cd7e6ffef8bd77e703e73b81a78ce0c8ffa0fc0cefa65e982ed9be4837ae89d4224f04018def27df92db148f
- SSDEEP
  
  1536:f5y+NrlB8Da2ivJHK7iRyVbuNMVrIvcOT1pYRQtDbEyRCRRRoR4Rk:nxlKezyduqy5TPYeBEy032ya
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2