c37ca2caf42d493351d0ac37c6dc1a5e7fdc5b9708fbac6e7e0c78cfac3e8ef8 | Triage

Sharing

General

Target

90d5287dc07bd532cf4d074b48df2410_NeikiAnalytics
Size

89KB
Sample

240511-gzve3sce42
MD5

90d5287dc07bd532cf4d074b48df2410
SHA1

20ec149083f3c852cac91dbda43c150092486d05
SHA256

c37ca2caf42d493351d0ac37c6dc1a5e7fdc5b9708fbac6e7e0c78cfac3e8ef8
SHA512

8b57aa4cec89591e46ebbd8c00ce430ba8e6061431698c89faba51a1079d49140ebd28d81b828e04fd160bf49f12f4e440b462131139208a4cdcddc7553d74e0
SSDEEP

1536:e5+60WmXvNV/VrzmYq0gqTtvJ+bej+PjSYJRQo3R+KRFR3RzR1URJrCiuiNj5QkP:E1HGN5VrzmYqkTtJ0eIjSYJeojb5ZXUx

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  90d5287dc07bd532cf4d074b48df2410_NeikiAnalytics
- Size
  
  89KB
- MD5
  
  90d5287dc07bd532cf4d074b48df2410
- SHA1
  
  20ec149083f3c852cac91dbda43c150092486d05
- SHA256
  
  c37ca2caf42d493351d0ac37c6dc1a5e7fdc5b9708fbac6e7e0c78cfac3e8ef8
- SHA512
  
  8b57aa4cec89591e46ebbd8c00ce430ba8e6061431698c89faba51a1079d49140ebd28d81b828e04fd160bf49f12f4e440b462131139208a4cdcddc7553d74e0
- SSDEEP
  
  1536:e5+60WmXvNV/VrzmYq0gqTtvJ+bej+PjSYJRQo3R+KRFR3RzR1URJrCiuiNj5QkP:E1HGN5VrzmYqkTtJ0eIjSYJeojb5ZXUx
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2