deaaa5bab055a27142cea95db835123557a590de04eb541eb4cce767e148c1f8 | Triage

Sharing

General

Target

cfe65811516a75c3b0cfc550d80e62c0_NeikiAnalytics
Size

194KB
Sample

240515-nm23qafd99
MD5

cfe65811516a75c3b0cfc550d80e62c0
SHA1

9230dde511a88a8cd5b037e83c8e34c5922dc9ab
SHA256

deaaa5bab055a27142cea95db835123557a590de04eb541eb4cce767e148c1f8
SHA512

039661b85476f6f5a80b53b325fb6a106b25bd5eb1f4b3c5cdbc438d7e352fceb835094f25a94cd388805e2728d47e645bc7367a68dfc3296fad9d088fe05eba
SSDEEP

3072:5xH9PHAKnRMdSfUNRbCeR0pN03xWlJ7mlOD6pN03:LNRMdSfUNRbCeKpNYxWlJ7mkD6pNY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  cfe65811516a75c3b0cfc550d80e62c0_NeikiAnalytics
- Size
  
  194KB
- MD5
  
  cfe65811516a75c3b0cfc550d80e62c0
- SHA1
  
  9230dde511a88a8cd5b037e83c8e34c5922dc9ab
- SHA256
  
  deaaa5bab055a27142cea95db835123557a590de04eb541eb4cce767e148c1f8
- SHA512
  
  039661b85476f6f5a80b53b325fb6a106b25bd5eb1f4b3c5cdbc438d7e352fceb835094f25a94cd388805e2728d47e645bc7367a68dfc3296fad9d088fe05eba
- SSDEEP
  
  3072:5xH9PHAKnRMdSfUNRbCeR0pN03xWlJ7mlOD6pN03:LNRMdSfUNRbCeKpNYxWlJ7mkD6pNY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2