302c0ef01d6c6bf6ecd95968c2702c3f095a413242ae7441f2338280bfc8b305 | Triage

Sharing

General

Target

439cc9f175938b5a8a9191c5db2038c0_NeikiAnalytics
Size

128KB
Sample

240515-15aseafa23
MD5

439cc9f175938b5a8a9191c5db2038c0
SHA1

f5d93a05b9b695622c61e0055487c1d60e0cd079
SHA256

302c0ef01d6c6bf6ecd95968c2702c3f095a413242ae7441f2338280bfc8b305
SHA512

ab411425123b45d47875ca392115a79e6cb410d6a198495975b0553622030d79fc5da26acea3f30f32c8c090af02e8cc613c978a6cae4481676ed3bc7ef05be3
SSDEEP

3072:kAFn2koWlmjafxNrzdH13+EE+RaZ6r+GDZnr:PRoJjafxNrzd5IF6rfBr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  439cc9f175938b5a8a9191c5db2038c0_NeikiAnalytics
- Size
  
  128KB
- MD5
  
  439cc9f175938b5a8a9191c5db2038c0
- SHA1
  
  f5d93a05b9b695622c61e0055487c1d60e0cd079
- SHA256
  
  302c0ef01d6c6bf6ecd95968c2702c3f095a413242ae7441f2338280bfc8b305
- SHA512
  
  ab411425123b45d47875ca392115a79e6cb410d6a198495975b0553622030d79fc5da26acea3f30f32c8c090af02e8cc613c978a6cae4481676ed3bc7ef05be3
- SSDEEP
  
  3072:kAFn2koWlmjafxNrzdH13+EE+RaZ6r+GDZnr:PRoJjafxNrzd5IF6rfBr
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2