d9f9dd603de79d8192c61f8c2be5a1edfaf85c2689a8f2fb3549f58e0fe2b1cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bed132224461dd3466cc07922707a4f0_NeikiAnalytics
Size

872KB
Sample

240514-lkqkssah36
MD5

bed132224461dd3466cc07922707a4f0
SHA1

f1aceb7b973f7ef4588c03d0e3655a02811b2c3a
SHA256

d9f9dd603de79d8192c61f8c2be5a1edfaf85c2689a8f2fb3549f58e0fe2b1cc
SHA512

06fbf3ff2cba2d9dcd991e4b5b76b93ef482c8e5c46c3c8fb11ebbfe177d8d8f1a40ffdf13e819a721b23d3fd2996ca918630addb2e241596ed30288ec12d3df
SSDEEP

24576:mHPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+Y:mXbazR0v

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  bed132224461dd3466cc07922707a4f0_NeikiAnalytics
- Size
  
  872KB
- MD5
  
  bed132224461dd3466cc07922707a4f0
- SHA1
  
  f1aceb7b973f7ef4588c03d0e3655a02811b2c3a
- SHA256
  
  d9f9dd603de79d8192c61f8c2be5a1edfaf85c2689a8f2fb3549f58e0fe2b1cc
- SHA512
  
  06fbf3ff2cba2d9dcd991e4b5b76b93ef482c8e5c46c3c8fb11ebbfe177d8d8f1a40ffdf13e819a721b23d3fd2996ca918630addb2e241596ed30288ec12d3df
- SSDEEP
  
  24576:mHPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+Y:mXbazR0v
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2