f5b20809c884e7d921c41aa1f275e33242f1f2aaa28cc5a458d9629ff2c538d9 | Triage

Sharing

General

Target

904625ec8a07cf3f932d5d87b3daa780_NeikiAnalytics
Size

64KB
Sample

240515-gmaj5scc77
MD5

904625ec8a07cf3f932d5d87b3daa780
SHA1

cbb2ab79029a316adeaa19cf26c5f0af4673ccb6
SHA256

f5b20809c884e7d921c41aa1f275e33242f1f2aaa28cc5a458d9629ff2c538d9
SHA512

38c1d4aab11c13d1180108d1b7c3a8473ce9bbec698f54e5796d8c787314969ef4ad08cb1e82e5272fc0ef3e8dee2cd35e07e75f46ba44b22f31fe935aacbe79
SSDEEP

1536:vFBe1CbhyE/it1xxxxxxJaU4WyksrPFW2iwTbW:H4Si6XBFW2VTbW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  904625ec8a07cf3f932d5d87b3daa780_NeikiAnalytics
- Size
  
  64KB
- MD5
  
  904625ec8a07cf3f932d5d87b3daa780
- SHA1
  
  cbb2ab79029a316adeaa19cf26c5f0af4673ccb6
- SHA256
  
  f5b20809c884e7d921c41aa1f275e33242f1f2aaa28cc5a458d9629ff2c538d9
- SHA512
  
  38c1d4aab11c13d1180108d1b7c3a8473ce9bbec698f54e5796d8c787314969ef4ad08cb1e82e5272fc0ef3e8dee2cd35e07e75f46ba44b22f31fe935aacbe79
- SSDEEP
  
  1536:vFBe1CbhyE/it1xxxxxxJaU4WyksrPFW2iwTbW:H4Si6XBFW2VTbW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2