f80d2cb9ef10aed7ed1fcb06bf7e6202fd3cfeaeaa07076dfa6c1b06a3548f67 | Triage

Sharing

General

Target

c2af9840d02a6c2a6d2322eb59ee9220_NeikiAnalytics
Size

371KB
Sample

240514-megw5sbf81
MD5

c2af9840d02a6c2a6d2322eb59ee9220
SHA1

bd78d2f3353e40e3be5469a145af959596a222ec
SHA256

f80d2cb9ef10aed7ed1fcb06bf7e6202fd3cfeaeaa07076dfa6c1b06a3548f67
SHA512

52289ebe56df66e278679294f4433754742150bbfec2c408a9559de6ab3d141fc40dfca00269b05d1e6406b677a794b50e7aabc056b8e7574ac0f2d072bd2f30
SSDEEP

3072:qgFPmIOHL3mE3eShbRdIu6dNeXZs+XBL+FhVukEB0pwGvJe2VTBpifm3FKCE:qgJmI21uGN+NQs+RLOhSiix

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c2af9840d02a6c2a6d2322eb59ee9220_NeikiAnalytics
- Size
  
  371KB
- MD5
  
  c2af9840d02a6c2a6d2322eb59ee9220
- SHA1
  
  bd78d2f3353e40e3be5469a145af959596a222ec
- SHA256
  
  f80d2cb9ef10aed7ed1fcb06bf7e6202fd3cfeaeaa07076dfa6c1b06a3548f67
- SHA512
  
  52289ebe56df66e278679294f4433754742150bbfec2c408a9559de6ab3d141fc40dfca00269b05d1e6406b677a794b50e7aabc056b8e7574ac0f2d072bd2f30
- SSDEEP
  
  3072:qgFPmIOHL3mE3eShbRdIu6dNeXZs+XBL+FhVukEB0pwGvJe2VTBpifm3FKCE:qgJmI21uGN+NQs+RLOhSiix
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2