10fd984552fa096f1bab33af7caffce60c8b61e1bb5dc4c772be035cda75c25a | Triage

Sharing

General

Target

b4a49328026f700a458b923704928790_NeikiAnalytics
Size

704KB
Sample

240513-nda8msbh6t
MD5

b4a49328026f700a458b923704928790
SHA1

66e93033105c6b67e65e212cca9e8d6fea55f837
SHA256

10fd984552fa096f1bab33af7caffce60c8b61e1bb5dc4c772be035cda75c25a
SHA512

4d7ed0c14be8a7b0e0364f86063201a2e10ce2905965c47cf8c19b0bf9ac5307c5b05232584e53aa86d16dc29af1a6453b8a6f5f6eb8e54daef5b6e2404de9f5
SSDEEP

12288:VgJAukrQg5W/+zrWAI5KFum/+zrWAIAqWim/+zrWAI5KFHTP7rXFr/+zrWAI5KW:AkrQg5Wm0BmmvFimm0MTP7hm0b

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b4a49328026f700a458b923704928790_NeikiAnalytics
- Size
  
  704KB
- MD5
  
  b4a49328026f700a458b923704928790
- SHA1
  
  66e93033105c6b67e65e212cca9e8d6fea55f837
- SHA256
  
  10fd984552fa096f1bab33af7caffce60c8b61e1bb5dc4c772be035cda75c25a
- SHA512
  
  4d7ed0c14be8a7b0e0364f86063201a2e10ce2905965c47cf8c19b0bf9ac5307c5b05232584e53aa86d16dc29af1a6453b8a6f5f6eb8e54daef5b6e2404de9f5
- SSDEEP
  
  12288:VgJAukrQg5W/+zrWAI5KFum/+zrWAIAqWim/+zrWAI5KFHTP7rXFr/+zrWAI5KW:AkrQg5Wm0BmmvFimm0MTP7hm0b
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2