5b9a85b41ac20d2e553c7c2020aa9b8654458fb99f3dd936954c896a58c10728 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7ce72b5fc78e3e7b3cc072a49472cd80_NeikiAnalytics
Size

377KB
Sample

240511-e3m43afh69
MD5

7ce72b5fc78e3e7b3cc072a49472cd80
SHA1

9bb88592dafd82274c6de6803129e5845571ddea
SHA256

5b9a85b41ac20d2e553c7c2020aa9b8654458fb99f3dd936954c896a58c10728
SHA512

0c81c7cfd61cf5e942f1709f5ad1d2136a8e8f2657b0c83126cfc7ee5d4c3a4c23e1c5657f63946ef5e4fab1c9975b1af5d8eaf93074f8a1d935ebafee127854
SSDEEP

6144:1srOGNp5O4KxVdGGSgnohijgAUv5fKx/SgnohignC5V:1srRO5HdjdMTv5i1dayV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  7ce72b5fc78e3e7b3cc072a49472cd80_NeikiAnalytics
- Size
  
  377KB
- MD5
  
  7ce72b5fc78e3e7b3cc072a49472cd80
- SHA1
  
  9bb88592dafd82274c6de6803129e5845571ddea
- SHA256
  
  5b9a85b41ac20d2e553c7c2020aa9b8654458fb99f3dd936954c896a58c10728
- SHA512
  
  0c81c7cfd61cf5e942f1709f5ad1d2136a8e8f2657b0c83126cfc7ee5d4c3a4c23e1c5657f63946ef5e4fab1c9975b1af5d8eaf93074f8a1d935ebafee127854
- SSDEEP
  
  6144:1srOGNp5O4KxVdGGSgnohijgAUv5fKx/SgnohignC5V:1srRO5HdjdMTv5i1dayV
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2