7358342d924b7285308d0e6c3c420ba83a92cb954a059c36a1f9664271ce324b | Triage

Sharing

General

Target

d1fe7f01935b65f61bd1b959169363b0_NeikiAnalytics
Size

462KB
Sample

240515-pnlykahe73
MD5

d1fe7f01935b65f61bd1b959169363b0
SHA1

26c81dfa784948e497c71930c229c250d179f3f7
SHA256

7358342d924b7285308d0e6c3c420ba83a92cb954a059c36a1f9664271ce324b
SHA512

a3b919e172f6bc0f65c8e7ba890d4145d06b05d10b9bea9e26709c5658b7a2454cb44fedef4ce56e20aa46581c1bf94dd2cbf13b89bdead7cd93d0b0ad0cee29
SSDEEP

6144:hJxOLirw6/eKxSlKKZ74ueKxff0qjwszeX9z6/ojwszeXmOEgHixuqjwszeXm:hatlr54ujjgj+HiPj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d1fe7f01935b65f61bd1b959169363b0_NeikiAnalytics
- Size
  
  462KB
- MD5
  
  d1fe7f01935b65f61bd1b959169363b0
- SHA1
  
  26c81dfa784948e497c71930c229c250d179f3f7
- SHA256
  
  7358342d924b7285308d0e6c3c420ba83a92cb954a059c36a1f9664271ce324b
- SHA512
  
  a3b919e172f6bc0f65c8e7ba890d4145d06b05d10b9bea9e26709c5658b7a2454cb44fedef4ce56e20aa46581c1bf94dd2cbf13b89bdead7cd93d0b0ad0cee29
- SSDEEP
  
  6144:hJxOLirw6/eKxSlKKZ74ueKxff0qjwszeX9z6/ojwszeXmOEgHixuqjwszeXm:hatlr54ujjgj+HiPj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2