66601816bcf8f9f5c76d093612ac3a2e60966972e55121eea3b3c88e19015007 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

380e6917886c76839778ff1b50728780_NeikiAnalytics
Size

4.1MB
Sample

240514-2eqxdabf2y
MD5

380e6917886c76839778ff1b50728780
SHA1

85c1c6992cb2c78a48dc0fc8e4444ce1cb5ba395
SHA256

66601816bcf8f9f5c76d093612ac3a2e60966972e55121eea3b3c88e19015007
SHA512

39141d483b616b5fbc8385d355f5ef04d799958c4910b95a016685d10ced5a41a3de4053b8352b0c13860923f073263d0d401759dcf144b50258c11063c9bd45
SSDEEP

98304:+R0pI/IQlUoMPdmpSp54ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdmW5n9klRKN41v

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  380e6917886c76839778ff1b50728780_NeikiAnalytics
- Size
  
  4.1MB
- MD5
  
  380e6917886c76839778ff1b50728780
- SHA1
  
  85c1c6992cb2c78a48dc0fc8e4444ce1cb5ba395
- SHA256
  
  66601816bcf8f9f5c76d093612ac3a2e60966972e55121eea3b3c88e19015007
- SHA512
  
  39141d483b616b5fbc8385d355f5ef04d799958c4910b95a016685d10ced5a41a3de4053b8352b0c13860923f073263d0d401759dcf144b50258c11063c9bd45
- SSDEEP
  
  98304:+R0pI/IQlUoMPdmpSp54ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdmW5n9klRKN41v
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2