d3d01bbf11574164575ab3d3903cab27b8c79f7db72d86527212f7d5d19a22c3 | Triage

Sharing

General

Target

a119153166b3eb07a56b12188192ef80_NeikiAnalytics
Size

512KB
Sample

240515-h3xv2seg92
MD5

a119153166b3eb07a56b12188192ef80
SHA1

201a249ddb5f6efe87bbb8fe6f109803dca744e1
SHA256

d3d01bbf11574164575ab3d3903cab27b8c79f7db72d86527212f7d5d19a22c3
SHA512

80d639edd748057a7fc9b94d95a6186de74e3fe5ae38c54ee9485680a20122008095fad3bb7220745e41e792dfdbcfeef468693577bc2e49924ee801b26c06eb
SSDEEP

6144:LwRu+o5SIDNwt853XBpnTfwNPbAvjDAcXxxXfY09cnEWPDZ:LwMrUQBpnchWcZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a119153166b3eb07a56b12188192ef80_NeikiAnalytics
- Size
  
  512KB
- MD5
  
  a119153166b3eb07a56b12188192ef80
- SHA1
  
  201a249ddb5f6efe87bbb8fe6f109803dca744e1
- SHA256
  
  d3d01bbf11574164575ab3d3903cab27b8c79f7db72d86527212f7d5d19a22c3
- SHA512
  
  80d639edd748057a7fc9b94d95a6186de74e3fe5ae38c54ee9485680a20122008095fad3bb7220745e41e792dfdbcfeef468693577bc2e49924ee801b26c06eb
- SSDEEP
  
  6144:LwRu+o5SIDNwt853XBpnTfwNPbAvjDAcXxxXfY09cnEWPDZ:LwMrUQBpnchWcZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2