fb4c1f6027819c1e7de1d27d8600a8843ba6cbd3890697a93496af49510f975d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3688de40183454c2036b8f3dea2a370_NeikiAnalytics
Size

1.3MB
Sample

240514-msr92acd2x
MD5

c3688de40183454c2036b8f3dea2a370
SHA1

86b3b2b2e49ad5b494716d52e6deb8f9dd20ab09
SHA256

fb4c1f6027819c1e7de1d27d8600a8843ba6cbd3890697a93496af49510f975d
SHA512

4c0ef1a733649ec65d4aa77d607ea8dfe2b6e960a828861f49bb0eea77236627d54119dc4debc3db0484606a4aa0dd542223f84ced927065db566f55a0e01f64
SSDEEP

6144:eleSd7Qc0zt9E5ZC2npb+oB+Zz2HG8t0DoEWufVuvw0HBHY8rQ+6bPD3wPSk8ymB:eyAbaz22cWfVaw0HBHY8r8ABjMn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c3688de40183454c2036b8f3dea2a370_NeikiAnalytics
- Size
  
  1.3MB
- MD5
  
  c3688de40183454c2036b8f3dea2a370
- SHA1
  
  86b3b2b2e49ad5b494716d52e6deb8f9dd20ab09
- SHA256
  
  fb4c1f6027819c1e7de1d27d8600a8843ba6cbd3890697a93496af49510f975d
- SHA512
  
  4c0ef1a733649ec65d4aa77d607ea8dfe2b6e960a828861f49bb0eea77236627d54119dc4debc3db0484606a4aa0dd542223f84ced927065db566f55a0e01f64
- SSDEEP
  
  6144:eleSd7Qc0zt9E5ZC2npb+oB+Zz2HG8t0DoEWufVuvw0HBHY8rQ+6bPD3wPSk8ymB:eyAbaz22cWfVaw0HBHY8r8ABjMn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2