d8e662741e775b2757ba7cf2ad3979ba162e2f2ef33f444822de0c9b59aeeb26 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a7a05368139adcdae91a33e6847f6a0_NeikiAnalytics
Size

80KB
Sample

240513-3y7jxabe22
MD5

3a7a05368139adcdae91a33e6847f6a0
SHA1

da4fe0d9faee51901fb15213b2f78bb7b521fb4d
SHA256

d8e662741e775b2757ba7cf2ad3979ba162e2f2ef33f444822de0c9b59aeeb26
SHA512

0df73de8981880cce163cd1c6fb42fa18009ae96a74cbf44ab66e4806c17d09d8ddf8cd06f29e319a2e437383721d4b1a50ec1e1399aad49433d8811e41b0cce
SSDEEP

1536:443njmj4JmHEOZuD+25P8liVzN+zL20gJi1i9:40nyuORsPoiVzgzL20WKS

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3a7a05368139adcdae91a33e6847f6a0_NeikiAnalytics
- Size
  
  80KB
- MD5
  
  3a7a05368139adcdae91a33e6847f6a0
- SHA1
  
  da4fe0d9faee51901fb15213b2f78bb7b521fb4d
- SHA256
  
  d8e662741e775b2757ba7cf2ad3979ba162e2f2ef33f444822de0c9b59aeeb26
- SHA512
  
  0df73de8981880cce163cd1c6fb42fa18009ae96a74cbf44ab66e4806c17d09d8ddf8cd06f29e319a2e437383721d4b1a50ec1e1399aad49433d8811e41b0cce
- SSDEEP
  
  1536:443njmj4JmHEOZuD+25P8liVzN+zL20gJi1i9:40nyuORsPoiVzgzL20WKS
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2