3054907d05f90fab09e2a0593119b02b6714e073d386747114ed7f4a48601394 | Triage

Sharing

General

Target

a997508f12632128b99ab6b349e383e0_NeikiAnalytics
Size

347KB
Sample

240511-kk3ppacb94
MD5

a997508f12632128b99ab6b349e383e0
SHA1

02d8aa2bf8929c78ee6dc3aa548e2ed76e61a9d3
SHA256

3054907d05f90fab09e2a0593119b02b6714e073d386747114ed7f4a48601394
SHA512

5012e85e0ba6014ad9e7956a58b4c870ec50b9e0049a5a807ae59bc1b8985d7488e3040ea0d54f6d32c31275465f5f06dba3020f401d8c29b481b4fc2911adeb
SSDEEP

6144:+47R2u5rx4brq2Ah1FM6234lKm3mo8Yvi4KsLTFM6234lKm3qk9:+Qx4brRGFB24lwR45FB24lEk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a997508f12632128b99ab6b349e383e0_NeikiAnalytics
- Size
  
  347KB
- MD5
  
  a997508f12632128b99ab6b349e383e0
- SHA1
  
  02d8aa2bf8929c78ee6dc3aa548e2ed76e61a9d3
- SHA256
  
  3054907d05f90fab09e2a0593119b02b6714e073d386747114ed7f4a48601394
- SHA512
  
  5012e85e0ba6014ad9e7956a58b4c870ec50b9e0049a5a807ae59bc1b8985d7488e3040ea0d54f6d32c31275465f5f06dba3020f401d8c29b481b4fc2911adeb
- SSDEEP
  
  6144:+47R2u5rx4brq2Ah1FM6234lKm3mo8Yvi4KsLTFM6234lKm3qk9:+Qx4brRGFB24lwR45FB24lEk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2