834f651fb1c43ff8f840d702fe083bdf1c12469f43a5bc0cd5575afa1c3a9a58 | Triage

Sharing

General

Target

00b6fa9c88588b4aaecdf2770a5c7310_NeikiAnalytics
Size

30KB
Sample

240512-mbst8sba7y
MD5

00b6fa9c88588b4aaecdf2770a5c7310
SHA1

ab987196e8588a951ca29dfd509711eb6cd2a159
SHA256

834f651fb1c43ff8f840d702fe083bdf1c12469f43a5bc0cd5575afa1c3a9a58
SHA512

ee6b25bff41691c445f4205fa230f2c10eb5634ae3ff19104fa06d5eb0d6221a1d565d210a4e34027035d74f094d6377fab504eb6f1a75a794992539acbdea73
SSDEEP

768:PVEHJqjHyGvwFylDpulVSQJrE/2QmlCYZUTCZYrTbu6U:PH2nylslwHCCLA

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  00b6fa9c88588b4aaecdf2770a5c7310_NeikiAnalytics
- Size
  
  30KB
- MD5
  
  00b6fa9c88588b4aaecdf2770a5c7310
- SHA1
  
  ab987196e8588a951ca29dfd509711eb6cd2a159
- SHA256
  
  834f651fb1c43ff8f840d702fe083bdf1c12469f43a5bc0cd5575afa1c3a9a58
- SHA512
  
  ee6b25bff41691c445f4205fa230f2c10eb5634ae3ff19104fa06d5eb0d6221a1d565d210a4e34027035d74f094d6377fab504eb6f1a75a794992539acbdea73
- SSDEEP
  
  768:PVEHJqjHyGvwFylDpulVSQJrE/2QmlCYZUTCZYrTbu6U:PH2nylslwHCCLA
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2