c00ee29b9c912a95450bc37fa929b6e6accf73fb7af6d8d41aa4b9cc7307eac1 | Triage

Sharing

General

Target

0ca75b2f811f42beb1c72955b399f270_NeikiAnalytics
Size

96KB
Sample

240512-pn3lbaeh2x
MD5

0ca75b2f811f42beb1c72955b399f270
SHA1

34d2b6e3907e9b6a3d590e0b2b8fd335b84b59cd
SHA256

c00ee29b9c912a95450bc37fa929b6e6accf73fb7af6d8d41aa4b9cc7307eac1
SHA512

f8045a583a6db57785d37b674ac7931b3d763b6ec5d26b319c6068c665e7a8c1be54b9554991651c395922e73f924af8db381310400296578ef3a01523935cd0
SSDEEP

1536:ztAb+9fWL4aHtUyhGhL/x3r/UlnpQk33y7LcXrCrWuA40ThrUQVoMdUT+irF:zuydcp5m1QWk3CsXraWuABThr1Rhk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0ca75b2f811f42beb1c72955b399f270_NeikiAnalytics
- Size
  
  96KB
- MD5
  
  0ca75b2f811f42beb1c72955b399f270
- SHA1
  
  34d2b6e3907e9b6a3d590e0b2b8fd335b84b59cd
- SHA256
  
  c00ee29b9c912a95450bc37fa929b6e6accf73fb7af6d8d41aa4b9cc7307eac1
- SHA512
  
  f8045a583a6db57785d37b674ac7931b3d763b6ec5d26b319c6068c665e7a8c1be54b9554991651c395922e73f924af8db381310400296578ef3a01523935cd0
- SSDEEP
  
  1536:ztAb+9fWL4aHtUyhGhL/x3r/UlnpQk33y7LcXrCrWuA40ThrUQVoMdUT+irF:zuydcp5m1QWk3CsXraWuABThr1Rhk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2