2453ddcb691321ab62092fff2ad8fe60faa33424192e8d36e7d5d3657745f8b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1ebbb2b7360393e96788ac93803c4d0_NeikiAnalytics
Size

89KB
Sample

240514-ly3saaba6t
MD5

c1ebbb2b7360393e96788ac93803c4d0
SHA1

1e1de185fb5605e78eba4c4dbc94376297fe9b6b
SHA256

2453ddcb691321ab62092fff2ad8fe60faa33424192e8d36e7d5d3657745f8b1
SHA512

1e11152a0262558028d492efd9139bcd5369584a01aa998dd85806d59d8c32a7491569b83994f2980b943fde68b8a4fc73c5a7ee984248197d3a929cd5742b20
SSDEEP

1536:Xq7N3s+C52CZeXtmGdoJ8R9UYyZcRlExkg8F:QN3s+ChZe9aJ8NKcRlakgw

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c1ebbb2b7360393e96788ac93803c4d0_NeikiAnalytics
- Size
  
  89KB
- MD5
  
  c1ebbb2b7360393e96788ac93803c4d0
- SHA1
  
  1e1de185fb5605e78eba4c4dbc94376297fe9b6b
- SHA256
  
  2453ddcb691321ab62092fff2ad8fe60faa33424192e8d36e7d5d3657745f8b1
- SHA512
  
  1e11152a0262558028d492efd9139bcd5369584a01aa998dd85806d59d8c32a7491569b83994f2980b943fde68b8a4fc73c5a7ee984248197d3a929cd5742b20
- SSDEEP
  
  1536:Xq7N3s+C52CZeXtmGdoJ8R9UYyZcRlExkg8F:QN3s+ChZe9aJ8NKcRlakgw
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2