fc0a4ffb36dbf9b3840d8314f5a90e1323e3aaefc495cb957685ad7d4a769c2c | Triage

Sharing

General

Target

91ec3c78ba963e90a83dcf71290d7df0_NeikiAnalytics
Size

64KB
Sample

240515-gswpkacc2t
MD5

91ec3c78ba963e90a83dcf71290d7df0
SHA1

14904afa5852899260ff3b168225f0e1d04a265c
SHA256

fc0a4ffb36dbf9b3840d8314f5a90e1323e3aaefc495cb957685ad7d4a769c2c
SHA512

0fa85aaa0dea309fd5e50769a34af3018f2dc524e25fc82e9e5387cc07f6f5f6453c78171a8508b55beef54bf8b16d80dfb515d1d0961bff378575555323b407
SSDEEP

1536:4EdvJEXdRBVWPoZZiR87m0ISSHNY+mFFWy6rPFW2iwTbW:rdvYdRBVK87mtSPXuFW2VTbW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  91ec3c78ba963e90a83dcf71290d7df0_NeikiAnalytics
- Size
  
  64KB
- MD5
  
  91ec3c78ba963e90a83dcf71290d7df0
- SHA1
  
  14904afa5852899260ff3b168225f0e1d04a265c
- SHA256
  
  fc0a4ffb36dbf9b3840d8314f5a90e1323e3aaefc495cb957685ad7d4a769c2c
- SHA512
  
  0fa85aaa0dea309fd5e50769a34af3018f2dc524e25fc82e9e5387cc07f6f5f6453c78171a8508b55beef54bf8b16d80dfb515d1d0961bff378575555323b407
- SSDEEP
  
  1536:4EdvJEXdRBVWPoZZiR87m0ISSHNY+mFFWy6rPFW2iwTbW:rdvYdRBVK87mtSPXuFW2VTbW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2