126e396f2d7f3837c27f3b1a12ac84c8a767da57a2ecbbe3bbdbea0624780642 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

075b3d7c5739309b1001565f4251ff50_NeikiAnalytics
Size

320KB
Sample

240513-x5tczabf25
MD5

075b3d7c5739309b1001565f4251ff50
SHA1

7a7dba64f3be71e1c6f64053a30b68dcce4d5ddd
SHA256

126e396f2d7f3837c27f3b1a12ac84c8a767da57a2ecbbe3bbdbea0624780642
SHA512

490102472a1c6776a74e7b1011f93d043b3504ab7abba9923f9a2a04ea7abfda1c5a9d2eb71ca775013f1a9aca3bd820ea55fb3769d9a9e69aef7fdc46ff9394
SSDEEP

6144:JoFyQKrda8UtDyB8LoedCFJ369BJ369vpui6yYPaIGckvNP8:iFyQKEZtyWUedCv2EpV6yYPaN0

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  075b3d7c5739309b1001565f4251ff50_NeikiAnalytics
- Size
  
  320KB
- MD5
  
  075b3d7c5739309b1001565f4251ff50
- SHA1
  
  7a7dba64f3be71e1c6f64053a30b68dcce4d5ddd
- SHA256
  
  126e396f2d7f3837c27f3b1a12ac84c8a767da57a2ecbbe3bbdbea0624780642
- SHA512
  
  490102472a1c6776a74e7b1011f93d043b3504ab7abba9923f9a2a04ea7abfda1c5a9d2eb71ca775013f1a9aca3bd820ea55fb3769d9a9e69aef7fdc46ff9394
- SSDEEP
  
  6144:JoFyQKrda8UtDyB8LoedCFJ369BJ369vpui6yYPaIGckvNP8:iFyQKEZtyWUedCv2EpV6yYPaN0
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2