6d7dfb457e2569ad67b51b416dae8bcedef012c8ef96977bc3e7f2e502e91985 | Triage

Sharing

General

Target

111dc7c00c7a8df8159d6e0f95c4c190_NeikiAnalytics
Size

538KB
Sample

240513-y3zyeach49
MD5

111dc7c00c7a8df8159d6e0f95c4c190
SHA1

38fe5530886375e0b33f978199849eeb68bfe4a9
SHA256

6d7dfb457e2569ad67b51b416dae8bcedef012c8ef96977bc3e7f2e502e91985
SHA512

ed1395b2a2507c9cfca6bef496fa94b67e61c325682e2fadb3bb4613de8512eb035e4cc8012ca8a0970093bf616c03dfb57ea204da7f4ea2eb3c210930060be5
SSDEEP

12288:wlbU+h1gL5pRTcAkS/3hzN8qE43fm78Vk:WbU+w5jcAkSYqyEk

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  111dc7c00c7a8df8159d6e0f95c4c190_NeikiAnalytics
- Size
  
  538KB
- MD5
  
  111dc7c00c7a8df8159d6e0f95c4c190
- SHA1
  
  38fe5530886375e0b33f978199849eeb68bfe4a9
- SHA256
  
  6d7dfb457e2569ad67b51b416dae8bcedef012c8ef96977bc3e7f2e502e91985
- SHA512
  
  ed1395b2a2507c9cfca6bef496fa94b67e61c325682e2fadb3bb4613de8512eb035e4cc8012ca8a0970093bf616c03dfb57ea204da7f4ea2eb3c210930060be5
- SSDEEP
  
  12288:wlbU+h1gL5pRTcAkS/3hzN8qE43fm78Vk:WbU+w5jcAkSYqyEk
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2