71d8926afba30f549cf60e035f8395998c589e51de82f3afc550ee34c18f4afc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77872b414838bdc7e02094e43ea4b4b0_NeikiAnalytics
Size

55KB
Sample

240511-ekw91seh22
MD5

77872b414838bdc7e02094e43ea4b4b0
SHA1

116c15b10cc96f816fedf1267db0f8a1d2b22643
SHA256

71d8926afba30f549cf60e035f8395998c589e51de82f3afc550ee34c18f4afc
SHA512

875d6a2c2ea3ea3ccc1a0caa6085d10940361a4f4bac5193fac08bb47f6875a1728aad29f30c8a5f1c2c4d5f33146dbc5dd8eabbc80cdce538a8a41ba5530193
SSDEEP

1536:5K6aKrcTC/2VP67Ks0Y8AEoMQU4cgkIsw0Y8AEoMQUgkIsw8AEoMQU4cIsw0Y8Aa:IB/C4s0Y8AEoMQU4cgkIsw0Y8AEoMQU1

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  77872b414838bdc7e02094e43ea4b4b0_NeikiAnalytics
- Size
  
  55KB
- MD5
  
  77872b414838bdc7e02094e43ea4b4b0
- SHA1
  
  116c15b10cc96f816fedf1267db0f8a1d2b22643
- SHA256
  
  71d8926afba30f549cf60e035f8395998c589e51de82f3afc550ee34c18f4afc
- SHA512
  
  875d6a2c2ea3ea3ccc1a0caa6085d10940361a4f4bac5193fac08bb47f6875a1728aad29f30c8a5f1c2c4d5f33146dbc5dd8eabbc80cdce538a8a41ba5530193
- SSDEEP
  
  1536:5K6aKrcTC/2VP67Ks0Y8AEoMQU4cgkIsw0Y8AEoMQUgkIsw8AEoMQU4cIsw0Y8Aa:IB/C4s0Y8AEoMQU4cgkIsw0Y8AEoMQU1
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2