094c950484ec437a11d9b3b4871e05dad5b31ede849c6bc8feb6cc0ee7ecce11 | Triage

Sharing

General

Target

b638a02ea18058eecf6243acf5698550_NeikiAnalytics
Size

1024KB
Sample

240515-k19syaac5y
MD5

b638a02ea18058eecf6243acf5698550
SHA1

04e33cb1d73f76613a895478f5444311956c1110
SHA256

094c950484ec437a11d9b3b4871e05dad5b31ede849c6bc8feb6cc0ee7ecce11
SHA512

f863bb8c8813a8d5d401e96a996a0bbeba9438107d96846a94f7116e5c8f6413afe2f5c5e6504723dfd545ffd803f4c1b968b94f868b15738814f7d3c02874bd
SSDEEP

12288:7wEjV1ykY660fIaDZkY660f8jTK/XhdAwlt01PBExKN4P6IfKTLR+6CwUkEoH:HbygsaDZgQjGkwlks/6HnEO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b638a02ea18058eecf6243acf5698550_NeikiAnalytics
- Size
  
  1024KB
- MD5
  
  b638a02ea18058eecf6243acf5698550
- SHA1
  
  04e33cb1d73f76613a895478f5444311956c1110
- SHA256
  
  094c950484ec437a11d9b3b4871e05dad5b31ede849c6bc8feb6cc0ee7ecce11
- SHA512
  
  f863bb8c8813a8d5d401e96a996a0bbeba9438107d96846a94f7116e5c8f6413afe2f5c5e6504723dfd545ffd803f4c1b968b94f868b15738814f7d3c02874bd
- SSDEEP
  
  12288:7wEjV1ykY660fIaDZkY660f8jTK/XhdAwlt01PBExKN4P6IfKTLR+6CwUkEoH:HbygsaDZgQjGkwlks/6HnEO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2