104bcbbeabd142192b893dd6da69fcc9f1b0f06072cebf42ec7a016856229cb5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

015c78261a5aff35697a9b41e0b12310_NeikiAnalytics
Size

538KB
Sample

240515-t2wr5shh89
MD5

015c78261a5aff35697a9b41e0b12310
SHA1

7a4514a1ecefd1e115238a53954c33c391c52c38
SHA256

104bcbbeabd142192b893dd6da69fcc9f1b0f06072cebf42ec7a016856229cb5
SHA512

6195ed73f9e4c40538d369d6b6d4dbef58c5538a37a2528a647c882e25d6e65c6dd43cbab26bfb3de947cde30149a919b7448f85aaa23b15e7ad19cf79b2960a
SSDEEP

12288:wlbN+h1gL5pRTcAkS/3hzN8qE43fm78Vt:WbN+w5jcAkSYqyEt

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  015c78261a5aff35697a9b41e0b12310_NeikiAnalytics
- Size
  
  538KB
- MD5
  
  015c78261a5aff35697a9b41e0b12310
- SHA1
  
  7a4514a1ecefd1e115238a53954c33c391c52c38
- SHA256
  
  104bcbbeabd142192b893dd6da69fcc9f1b0f06072cebf42ec7a016856229cb5
- SHA512
  
  6195ed73f9e4c40538d369d6b6d4dbef58c5538a37a2528a647c882e25d6e65c6dd43cbab26bfb3de947cde30149a919b7448f85aaa23b15e7ad19cf79b2960a
- SSDEEP
  
  12288:wlbN+h1gL5pRTcAkS/3hzN8qE43fm78Vt:WbN+w5jcAkSYqyEt
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2