5506f8d5fe3588baae111d07d48864656b315c56ec958cf65db5e63cfe248145 | Triage

Sharing

General

Target

a3af02b2723bbcd789d96f9bc4bb7ef0_NeikiAnalytics
Size

80KB
Sample

240515-jbkl3sfb3v
MD5

a3af02b2723bbcd789d96f9bc4bb7ef0
SHA1

672acb3ebc9296789e9f5bf61bd73063d4193aa2
SHA256

5506f8d5fe3588baae111d07d48864656b315c56ec958cf65db5e63cfe248145
SHA512

1f2b9a99ad1d6ff8b1dc86b1604962b57b5abe78a8d6ae97907a7f13f3473d2c40ecc7a46f2507e9404e4506699ba0c94b3eee56813c7a2e73692323fca4e860
SSDEEP

1536:g9/dXVfe3J9CvKBb2L/xS5DUHRbPa9b6i+sIk:O/dX5+jCvKC5S5DSCopsIk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a3af02b2723bbcd789d96f9bc4bb7ef0_NeikiAnalytics
- Size
  
  80KB
- MD5
  
  a3af02b2723bbcd789d96f9bc4bb7ef0
- SHA1
  
  672acb3ebc9296789e9f5bf61bd73063d4193aa2
- SHA256
  
  5506f8d5fe3588baae111d07d48864656b315c56ec958cf65db5e63cfe248145
- SHA512
  
  1f2b9a99ad1d6ff8b1dc86b1604962b57b5abe78a8d6ae97907a7f13f3473d2c40ecc7a46f2507e9404e4506699ba0c94b3eee56813c7a2e73692323fca4e860
- SSDEEP
  
  1536:g9/dXVfe3J9CvKBb2L/xS5DUHRbPa9b6i+sIk:O/dX5+jCvKC5S5DSCopsIk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2