e66a97453fb26a1b207be10b42eea70fa7ebfdeef1f74725c25d36c483c48ee6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39968c3058264c021846768ee0e89140_NeikiAnalytics
Size

336KB
Sample

240515-1akn5ada86
MD5

39968c3058264c021846768ee0e89140
SHA1

bdcbbdd913b23f5f471fb0b48e76cd181c3d4a5e
SHA256

e66a97453fb26a1b207be10b42eea70fa7ebfdeef1f74725c25d36c483c48ee6
SHA512

51fd32704ed49f40fd0d5eb41102c9c7b22b7513ba24db3aa3d5e9905cc6f2514781d8b6693cb597fdbfb520b9711be197b20152594db1ffb3ecd49d4026afe2
SSDEEP

6144:RfLux2kt24kVk/g4kU7aOl3BzrUmKyIxLfYeOO9UmKyIxLiajOE:hkf7aOlxzr3cOK3Taj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  39968c3058264c021846768ee0e89140_NeikiAnalytics
- Size
  
  336KB
- MD5
  
  39968c3058264c021846768ee0e89140
- SHA1
  
  bdcbbdd913b23f5f471fb0b48e76cd181c3d4a5e
- SHA256
  
  e66a97453fb26a1b207be10b42eea70fa7ebfdeef1f74725c25d36c483c48ee6
- SHA512
  
  51fd32704ed49f40fd0d5eb41102c9c7b22b7513ba24db3aa3d5e9905cc6f2514781d8b6693cb597fdbfb520b9711be197b20152594db1ffb3ecd49d4026afe2
- SSDEEP
  
  6144:RfLux2kt24kVk/g4kU7aOl3BzrUmKyIxLfYeOO9UmKyIxLiajOE:hkf7aOlxzr3cOK3Taj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2