bc1646d966c5b8f87146def30ccd42f3e7391bc9bee1a4b9c7e2a354a0747f8b | Triage

Sharing

General

Target

0c3afa08bc8c12cabd05cf8f15d70670_NeikiAnalytics
Size

57KB
Sample

240512-pmbffahg27
MD5

0c3afa08bc8c12cabd05cf8f15d70670
SHA1

e25c61cbfb3e3debc06c680494fdbe586d38e2fd
SHA256

bc1646d966c5b8f87146def30ccd42f3e7391bc9bee1a4b9c7e2a354a0747f8b
SHA512

49d1f710d7176d481ff82c0a51cad0d71328b905612210df3d73c8ac9033f8ab3e0cd40fcdb2f4cf2a149a745d759c94450eddee97eec454069175aadcade83f
SSDEEP

1536:RJct/fWpK3xf3ZmdbP4hncWPMOoBmkkpJg:H9pK35M43oBhk/g

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0c3afa08bc8c12cabd05cf8f15d70670_NeikiAnalytics
- Size
  
  57KB
- MD5
  
  0c3afa08bc8c12cabd05cf8f15d70670
- SHA1
  
  e25c61cbfb3e3debc06c680494fdbe586d38e2fd
- SHA256
  
  bc1646d966c5b8f87146def30ccd42f3e7391bc9bee1a4b9c7e2a354a0747f8b
- SHA512
  
  49d1f710d7176d481ff82c0a51cad0d71328b905612210df3d73c8ac9033f8ab3e0cd40fcdb2f4cf2a149a745d759c94450eddee97eec454069175aadcade83f
- SSDEEP
  
  1536:RJct/fWpK3xf3ZmdbP4hncWPMOoBmkkpJg:H9pK35M43oBhk/g
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2