f092505607675c12d9fe48fea001b270b088169ddb16cd57e44a9f8544e5f10c | Triage

Sharing

General

Target

d480de74275b5c514283326ba1f71db0_NeikiAnalytics
Size

81KB
Sample

240515-qxq5babh5y
MD5

d480de74275b5c514283326ba1f71db0
SHA1

fd84ce229f37864730ed4e1bf9a447ac7a8cc038
SHA256

f092505607675c12d9fe48fea001b270b088169ddb16cd57e44a9f8544e5f10c
SHA512

f9c4cf562e8405bf460ec00cba96a87bc978ec1d7e6d7c65e113dc8d30aca16d9047fd524feaea7d97deab26e6cfb451fbc9e0c4aad6b69f9bfff6a95f0965d6
SSDEEP

1536:BhRriUTHlF+J/+xQmnLdLndOQJRNXHNzGQwVLAw7m4LO++/+1m6KadhYxU33HX0L:hBTHlIJWxQmnBLdOQvwVLN/LrCimBaHc

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d480de74275b5c514283326ba1f71db0_NeikiAnalytics
- Size
  
  81KB
- MD5
  
  d480de74275b5c514283326ba1f71db0
- SHA1
  
  fd84ce229f37864730ed4e1bf9a447ac7a8cc038
- SHA256
  
  f092505607675c12d9fe48fea001b270b088169ddb16cd57e44a9f8544e5f10c
- SHA512
  
  f9c4cf562e8405bf460ec00cba96a87bc978ec1d7e6d7c65e113dc8d30aca16d9047fd524feaea7d97deab26e6cfb451fbc9e0c4aad6b69f9bfff6a95f0965d6
- SSDEEP
  
  1536:BhRriUTHlF+J/+xQmnLdLndOQJRNXHNzGQwVLAw7m4LO++/+1m6KadhYxU33HX0L:hBTHlIJWxQmnBLdOQvwVLN/LrCimBaHc
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2