83a4ed761ed726a0b72cb8861487c72dba3fa7fa06704a4c6413109b5a9716ff | Triage

Sharing

General

Target

3f68477961aeb4480e60af5db4626520_NeikiAnalytics
Size

352KB
Sample

240512-w83kdaaf2v
MD5

3f68477961aeb4480e60af5db4626520
SHA1

8e23830ca046c7c5ed6e7eeaa18313a7236c37e9
SHA256

83a4ed761ed726a0b72cb8861487c72dba3fa7fa06704a4c6413109b5a9716ff
SHA512

5857864b2a0ead76cf49c817b35c269234b925f41c7940e54966d323892155ea548c9fae4e1c4fb7e2532638e87bf115f038695392da530ecc46f6a0201bfda0
SSDEEP

6144:hemoR+1lmVR0q2MVEHeYr75lHzpaF2e6UK+42GTQMJSZO5f7M0rx7/hP66qve6UR:hemoR+1l4R5mHeYr75lTefkY660fIaDd

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3f68477961aeb4480e60af5db4626520_NeikiAnalytics
- Size
  
  352KB
- MD5
  
  3f68477961aeb4480e60af5db4626520
- SHA1
  
  8e23830ca046c7c5ed6e7eeaa18313a7236c37e9
- SHA256
  
  83a4ed761ed726a0b72cb8861487c72dba3fa7fa06704a4c6413109b5a9716ff
- SHA512
  
  5857864b2a0ead76cf49c817b35c269234b925f41c7940e54966d323892155ea548c9fae4e1c4fb7e2532638e87bf115f038695392da530ecc46f6a0201bfda0
- SSDEEP
  
  6144:hemoR+1lmVR0q2MVEHeYr75lHzpaF2e6UK+42GTQMJSZO5f7M0rx7/hP66qve6UR:hemoR+1l4R5mHeYr75lTefkY660fIaDd
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2