0610018068d30b4c6939595b98d86e8ffee725d3bc04f45f63925a24dc55d1cf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd0b5bee411272eaf19052027d6e8e10_NeikiAnalytics
Size

2.2MB
Sample

240513-spm4sscf39
MD5

bd0b5bee411272eaf19052027d6e8e10
SHA1

cca4542c9e2f0c9e63575a3d2f57e70128ea5b02
SHA256

0610018068d30b4c6939595b98d86e8ffee725d3bc04f45f63925a24dc55d1cf
SHA512

dbc520d0c399e3178ff9b8ce783ada191efbb11cdd07f9a6a3ebfd8c5f54e0609e7afa3a27228fb7ae855fd976a7aaed83b7904dba72bc684a8f792d575580c7
SSDEEP

49152:Wbi+QCbRquA/m2yL5zbfFiV+XenmE3/zO:Wbi+5oq2Vjnmt

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  bd0b5bee411272eaf19052027d6e8e10_NeikiAnalytics
- Size
  
  2.2MB
- MD5
  
  bd0b5bee411272eaf19052027d6e8e10
- SHA1
  
  cca4542c9e2f0c9e63575a3d2f57e70128ea5b02
- SHA256
  
  0610018068d30b4c6939595b98d86e8ffee725d3bc04f45f63925a24dc55d1cf
- SHA512
  
  dbc520d0c399e3178ff9b8ce783ada191efbb11cdd07f9a6a3ebfd8c5f54e0609e7afa3a27228fb7ae855fd976a7aaed83b7904dba72bc684a8f792d575580c7
- SSDEEP
  
  49152:Wbi+QCbRquA/m2yL5zbfFiV+XenmE3/zO:Wbi+5oq2Vjnmt
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2