7b7482e3e82226b0299e518dc1fe34edb875f66ed48e5d3d1e7adf91867b80d2 | Triage

Sharing

General

Target

4969785a6b38a307f11cb29803f14d80_NeikiAnalytics
Size

92KB
Sample

240514-bkh6lsdf72
MD5

4969785a6b38a307f11cb29803f14d80
SHA1

a5868a06edc615ff182a473ba6f1a98a13b6adfa
SHA256

7b7482e3e82226b0299e518dc1fe34edb875f66ed48e5d3d1e7adf91867b80d2
SHA512

0cbfbc039436e8bce6f4e00d770c50ce6366450c9457b2cca2911c24fac65b0bbeed0b70b6920443c4c21987267fdc83b60987406e15072145e3e8ac666e793b
SSDEEP

1536:hNihG8wQwYYDfqnwD0FcoWu9N/PmlEmpQOpjXq+66DFUABABOVLefE3:3ihG8VJYrqnwwV3mlOMj6+JB8M3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  4969785a6b38a307f11cb29803f14d80_NeikiAnalytics
- Size
  
  92KB
- MD5
  
  4969785a6b38a307f11cb29803f14d80
- SHA1
  
  a5868a06edc615ff182a473ba6f1a98a13b6adfa
- SHA256
  
  7b7482e3e82226b0299e518dc1fe34edb875f66ed48e5d3d1e7adf91867b80d2
- SHA512
  
  0cbfbc039436e8bce6f4e00d770c50ce6366450c9457b2cca2911c24fac65b0bbeed0b70b6920443c4c21987267fdc83b60987406e15072145e3e8ac666e793b
- SSDEEP
  
  1536:hNihG8wQwYYDfqnwD0FcoWu9N/PmlEmpQOpjXq+66DFUABABOVLefE3:3ihG8VJYrqnwwV3mlOMj6+JB8M3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2