51ed8ea7b7930fa2f30fed14830a38fdee3dfaf623008b3ef9fed65d47b4c0a3 | Triage

Sharing

General

Target

19fd195206fedfdce937b7759d7cb690_NeikiAnalytics
Size

77KB
Sample

240512-rdqvwacg38
MD5

19fd195206fedfdce937b7759d7cb690
SHA1

93f12b39afee57ade6991a2851ee2dccdc696d0d
SHA256

51ed8ea7b7930fa2f30fed14830a38fdee3dfaf623008b3ef9fed65d47b4c0a3
SHA512

553f936647819bc2c0abb77ae036b26e111ebea1ff1e595f743e4aa2a40f3050872b037292dd60ef41b351e889502173321d3169058d453cf4ef8b612e6d8f9b
SSDEEP

1536:9z/JU9/PAcfIHRq4WABiRwgz2Lt6wfi+TjRC/D:Y/TfIHRqriQOcwf1TjYD

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  19fd195206fedfdce937b7759d7cb690_NeikiAnalytics
- Size
  
  77KB
- MD5
  
  19fd195206fedfdce937b7759d7cb690
- SHA1
  
  93f12b39afee57ade6991a2851ee2dccdc696d0d
- SHA256
  
  51ed8ea7b7930fa2f30fed14830a38fdee3dfaf623008b3ef9fed65d47b4c0a3
- SHA512
  
  553f936647819bc2c0abb77ae036b26e111ebea1ff1e595f743e4aa2a40f3050872b037292dd60ef41b351e889502173321d3169058d453cf4ef8b612e6d8f9b
- SSDEEP
  
  1536:9z/JU9/PAcfIHRq4WABiRwgz2Lt6wfi+TjRC/D:Y/TfIHRqriQOcwf1TjYD
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2