2e7d31554efaa48eba9d7e17c9271905e2bd5a92927e0ce849cc62d5a25af86c | Triage

Sharing

General

Target

08fb4334a0b80882b7b9bc3952ffb720_NeikiAnalytics
Size

320KB
Sample

240514-wwzmysab97
MD5

08fb4334a0b80882b7b9bc3952ffb720
SHA1

4fef2ad887cd054098f95d6fa70dd3caafc0a324
SHA256

2e7d31554efaa48eba9d7e17c9271905e2bd5a92927e0ce849cc62d5a25af86c
SHA512

f3962a541473ec6a19cd7ee2dfda3e4e9cba994da1e5138a718687a7eafe2799d0c77d29e221cf0d9118f64e85bc655b9bf86921234bbc3d4194be804b25d083
SSDEEP

6144:IiqwfU7/U63/fc/UmKyIxLDXXoq9FJZCUmKyIxLq:Nqw87/632XXf9Do3R

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  08fb4334a0b80882b7b9bc3952ffb720_NeikiAnalytics
- Size
  
  320KB
- MD5
  
  08fb4334a0b80882b7b9bc3952ffb720
- SHA1
  
  4fef2ad887cd054098f95d6fa70dd3caafc0a324
- SHA256
  
  2e7d31554efaa48eba9d7e17c9271905e2bd5a92927e0ce849cc62d5a25af86c
- SHA512
  
  f3962a541473ec6a19cd7ee2dfda3e4e9cba994da1e5138a718687a7eafe2799d0c77d29e221cf0d9118f64e85bc655b9bf86921234bbc3d4194be804b25d083
- SSDEEP
  
  6144:IiqwfU7/U63/fc/UmKyIxLDXXoq9FJZCUmKyIxLq:Nqw87/632XXf9Do3R
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2