3072cc4ed1097b559375b0f089d52a7211d651453c326db98664eb5f3a84d95b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49a987be5efdace7a58ec0416f1491a0_NeikiAnalytics
Size

203KB
Sample

240515-2m6b2agb37
MD5

49a987be5efdace7a58ec0416f1491a0
SHA1

a6043bc44f76071c586b2f7a92b6865afe001442
SHA256

3072cc4ed1097b559375b0f089d52a7211d651453c326db98664eb5f3a84d95b
SHA512

8ecf609d37c58274b71b464451cd3eac8ebeb65c03b305d6f82ddedc688dc07f881a2541519828a080642f97c0f4db0403cac23044669dd9a889357ef897f883
SSDEEP

6144:+L1DGCW87ldOibtnJfKXqPTX7D7FM6234lKm3mo8YG:+L0CW67OwtJCXqP77D7FB24lwT

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  49a987be5efdace7a58ec0416f1491a0_NeikiAnalytics
- Size
  
  203KB
- MD5
  
  49a987be5efdace7a58ec0416f1491a0
- SHA1
  
  a6043bc44f76071c586b2f7a92b6865afe001442
- SHA256
  
  3072cc4ed1097b559375b0f089d52a7211d651453c326db98664eb5f3a84d95b
- SHA512
  
  8ecf609d37c58274b71b464451cd3eac8ebeb65c03b305d6f82ddedc688dc07f881a2541519828a080642f97c0f4db0403cac23044669dd9a889357ef897f883
- SSDEEP
  
  6144:+L1DGCW87ldOibtnJfKXqPTX7D7FM6234lKm3mo8YG:+L0CW67OwtJCXqP77D7FB24lwT
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2