2769c42648b9d158e7eefd27cbc5c9fb2353587575229fd365ec7f2919eca5e8 | Triage

Sharing

General

Target

b2c95732ab84f6e92d03f9660c605380_NeikiAnalytics
Size

370KB
Sample

240514-krx3sahf92
MD5

b2c95732ab84f6e92d03f9660c605380
SHA1

659a84ad6d87e39c4fa5d3d8b417362270edbcb1
SHA256

2769c42648b9d158e7eefd27cbc5c9fb2353587575229fd365ec7f2919eca5e8
SHA512

e04179556b346f1553793b44a5f301a02230df2492e901c8b6260815ba65290f1b1f3dbfdd8883738cb92a11df1db06c465f7419bd326295fc9f4b36bb6ac1a1
SSDEEP

3072:xGRz1hBnPoFts+cZaAPcIV+SlEHqGfLQPXuz4m1gz7XlveiGW23OHtGFOYdB4HS:oRhpZ+4JEHqYQmx147VveiLDG/dBn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b2c95732ab84f6e92d03f9660c605380_NeikiAnalytics
- Size
  
  370KB
- MD5
  
  b2c95732ab84f6e92d03f9660c605380
- SHA1
  
  659a84ad6d87e39c4fa5d3d8b417362270edbcb1
- SHA256
  
  2769c42648b9d158e7eefd27cbc5c9fb2353587575229fd365ec7f2919eca5e8
- SHA512
  
  e04179556b346f1553793b44a5f301a02230df2492e901c8b6260815ba65290f1b1f3dbfdd8883738cb92a11df1db06c465f7419bd326295fc9f4b36bb6ac1a1
- SSDEEP
  
  3072:xGRz1hBnPoFts+cZaAPcIV+SlEHqGfLQPXuz4m1gz7XlveiGW23OHtGFOYdB4HS:oRhpZ+4JEHqYQmx147VveiLDG/dBn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2