935dd94857b745bf4ced616b33a39df7a4b59e72da46eea2012b773d9b713b7a | Triage

Sharing

General

Target

2ea5a0732cf5a89c01d8037057d174e0_NeikiAnalytics
Size

406KB
Sample

240513-2r645agg8v
MD5

2ea5a0732cf5a89c01d8037057d174e0
SHA1

c1a10be2ce9ac6f8d903bb2b75c8c1053b95dde8
SHA256

935dd94857b745bf4ced616b33a39df7a4b59e72da46eea2012b773d9b713b7a
SHA512

045afe5e3b4c2a8c21bdac4904eed3d04b4a1abc7f6237aac228f06ebee1627319125aec69702cf870c2908d0cb09694f6c0a58ad02126c898081d533f6de48f
SSDEEP

6144:0FVNigU5U5Xj1XH5U5Xj83XH5U1XH5U5Xj8s5DXH5U5qXH5XXH5U5oXH:jMp3Ma3M3MvD3Mq3B3Mo3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2ea5a0732cf5a89c01d8037057d174e0_NeikiAnalytics
- Size
  
  406KB
- MD5
  
  2ea5a0732cf5a89c01d8037057d174e0
- SHA1
  
  c1a10be2ce9ac6f8d903bb2b75c8c1053b95dde8
- SHA256
  
  935dd94857b745bf4ced616b33a39df7a4b59e72da46eea2012b773d9b713b7a
- SHA512
  
  045afe5e3b4c2a8c21bdac4904eed3d04b4a1abc7f6237aac228f06ebee1627319125aec69702cf870c2908d0cb09694f6c0a58ad02126c898081d533f6de48f
- SSDEEP
  
  6144:0FVNigU5U5Xj1XH5U5Xj83XH5U1XH5U5Xj8s5DXH5U5qXH5XXH5U5oXH:jMp3Ma3M3MvD3Mq3B3Mo3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2