b97ab4a4605f0f5872dbec39e18f31632a4d91d1a74a4a74bd9aa738403263cf | Triage

Sharing

General

Target

594540a06a90ef560e4a78dc3f0e8a10_NeikiAnalytics
Size

243KB
Sample

240512-b92n9adh35
MD5

594540a06a90ef560e4a78dc3f0e8a10
SHA1

5e9bba12286f71eb768d27090c0001e04473b689
SHA256

b97ab4a4605f0f5872dbec39e18f31632a4d91d1a74a4a74bd9aa738403263cf
SHA512

de1a43f4808670c08cf35b7ee6d6886bbf0ee4a5ecf30ccfd9c7a6104528ba85daa3c1aafc27fd0f209b30c4058dc7331ed45bf6ac6c0659c1b9807590768edd
SSDEEP

3072:Z3d0oqJGtlToKz8lHXtlU2Nhluy78nwTxyIvXQWBaolfC4VJ62Q:XqJGt1oKzwdlU2zlNgwTnAWtlhjQ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  594540a06a90ef560e4a78dc3f0e8a10_NeikiAnalytics
- Size
  
  243KB
- MD5
  
  594540a06a90ef560e4a78dc3f0e8a10
- SHA1
  
  5e9bba12286f71eb768d27090c0001e04473b689
- SHA256
  
  b97ab4a4605f0f5872dbec39e18f31632a4d91d1a74a4a74bd9aa738403263cf
- SHA512
  
  de1a43f4808670c08cf35b7ee6d6886bbf0ee4a5ecf30ccfd9c7a6104528ba85daa3c1aafc27fd0f209b30c4058dc7331ed45bf6ac6c0659c1b9807590768edd
- SSDEEP
  
  3072:Z3d0oqJGtlToKz8lHXtlU2Nhluy78nwTxyIvXQWBaolfC4VJ62Q:XqJGt1oKzwdlU2zlNgwTnAWtlhjQ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2