51f605ee6dfca7abdae299a3ba51da75d05b6f71570ed604de9de47bf3b5666f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43fde889a3c2107f61573a950b9767a0_NeikiAnalytics
Size

259KB
Sample

240514-3kvcesef42
MD5

43fde889a3c2107f61573a950b9767a0
SHA1

9bd3562f79f0e46c127d10029ff2ffb864ae4278
SHA256

51f605ee6dfca7abdae299a3ba51da75d05b6f71570ed604de9de47bf3b5666f
SHA512

465796350c136b094b631c3acde1ba0eaeb73f55e56d46c6839d52cb5056922f5c69c427307262c5494d50eeb6204dc2e6ccca13d4e9950a466039e160fcd32e
SSDEEP

3072:bGE34oXHZTdCTtSJ9IDlRxyhTbhgu+tAcrzkAqSxYIhOmTsF93UYfwC6GIoutz5s:b/X10TMsDshsrYIcm4FmowdHoSa

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  43fde889a3c2107f61573a950b9767a0_NeikiAnalytics
- Size
  
  259KB
- MD5
  
  43fde889a3c2107f61573a950b9767a0
- SHA1
  
  9bd3562f79f0e46c127d10029ff2ffb864ae4278
- SHA256
  
  51f605ee6dfca7abdae299a3ba51da75d05b6f71570ed604de9de47bf3b5666f
- SHA512
  
  465796350c136b094b631c3acde1ba0eaeb73f55e56d46c6839d52cb5056922f5c69c427307262c5494d50eeb6204dc2e6ccca13d4e9950a466039e160fcd32e
- SSDEEP
  
  3072:bGE34oXHZTdCTtSJ9IDlRxyhTbhgu+tAcrzkAqSxYIhOmTsF93UYfwC6GIoutz5s:b/X10TMsDshsrYIcm4FmowdHoSa
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2