feddd66a4dfed04c733f50055e1ea5c6fb27dd8d5ec60e7bd34fd00b2df4f0d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7ee6710a263362f8d169b5b61d03f120_NeikiAnalytics
Size

144KB
Sample

240512-jkv46sad78
MD5

7ee6710a263362f8d169b5b61d03f120
SHA1

6bd9f34f30c30aae71f63fe2c3850285e9cb949a
SHA256

feddd66a4dfed04c733f50055e1ea5c6fb27dd8d5ec60e7bd34fd00b2df4f0d7
SHA512

094790b8aedf9e956fd36fe8f5ed2861cd8e27a61162b57862cc1c6090eacb838c49d3ab50eba04fe5fd314f88f0f2d82d367260544d2b484c4b89898511d74d
SSDEEP

3072:4C0DnK1ojVj6v/5ezGYJpD9r8XxrYnQg4sI+:TWK6VI8GyZ6Yu+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  7ee6710a263362f8d169b5b61d03f120_NeikiAnalytics
- Size
  
  144KB
- MD5
  
  7ee6710a263362f8d169b5b61d03f120
- SHA1
  
  6bd9f34f30c30aae71f63fe2c3850285e9cb949a
- SHA256
  
  feddd66a4dfed04c733f50055e1ea5c6fb27dd8d5ec60e7bd34fd00b2df4f0d7
- SHA512
  
  094790b8aedf9e956fd36fe8f5ed2861cd8e27a61162b57862cc1c6090eacb838c49d3ab50eba04fe5fd314f88f0f2d82d367260544d2b484c4b89898511d74d
- SSDEEP
  
  3072:4C0DnK1ojVj6v/5ezGYJpD9r8XxrYnQg4sI+:TWK6VI8GyZ6Yu+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2