31b16771cb098d45676dfc894d3c992d2fb54ee4a4c3665db2180113fad78b78 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a1425b3ef6282f6d3fe16ce25a7359b0_NeikiAnalytics
Size

74KB
Sample

240511-jj3smaeb4x
MD5

a1425b3ef6282f6d3fe16ce25a7359b0
SHA1

a980c496d3c8d310ca70be0a71d9133017659655
SHA256

31b16771cb098d45676dfc894d3c992d2fb54ee4a4c3665db2180113fad78b78
SHA512

4484b628237f851a1753e0a7e920d324d48e5d683e2816de0378f1563a3a81986a116633f2ebe84dd9b845d49c8939430cda1fcdea6bba8e4ec407c3af76fdbf
SSDEEP

1536:8LaBLv+9XAZGCJbKJm7cSDUMy/5YfGameC:k4bk4pKE7cJGo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a1425b3ef6282f6d3fe16ce25a7359b0_NeikiAnalytics
- Size
  
  74KB
- MD5
  
  a1425b3ef6282f6d3fe16ce25a7359b0
- SHA1
  
  a980c496d3c8d310ca70be0a71d9133017659655
- SHA256
  
  31b16771cb098d45676dfc894d3c992d2fb54ee4a4c3665db2180113fad78b78
- SHA512
  
  4484b628237f851a1753e0a7e920d324d48e5d683e2816de0378f1563a3a81986a116633f2ebe84dd9b845d49c8939430cda1fcdea6bba8e4ec407c3af76fdbf
- SSDEEP
  
  1536:8LaBLv+9XAZGCJbKJm7cSDUMy/5YfGameC:k4bk4pKE7cJGo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2