978485b715b5121add54f1c9443073f5e3f4aa7184e7b678074b6a3c147e7cb6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08ba86a923f7eb2eb56db0359fa2c340_NeikiAnalytics
Size

344KB
Sample

240515-vqbhhabc66
MD5

08ba86a923f7eb2eb56db0359fa2c340
SHA1

db1a895108c0b913e94190d2c38ce3b2a8db27b5
SHA256

978485b715b5121add54f1c9443073f5e3f4aa7184e7b678074b6a3c147e7cb6
SHA512

ed9e1b20e4dc92597d3b65d19b5c0c2f786d665e6bd26ef4de99f67e7557263550d4463cd890f6e56c8b6d0dc498f619786bdc7a5649a154ddca2666b4fc0b8d
SSDEEP

6144:ugvY1WvfVnVIgGEmOyC78ShvIwxa7dWbb5JUfqOyC78ShvIwxa7dWbbb:/vYcvnwFQIwAxWJJUKFQIwAxWr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  08ba86a923f7eb2eb56db0359fa2c340_NeikiAnalytics
- Size
  
  344KB
- MD5
  
  08ba86a923f7eb2eb56db0359fa2c340
- SHA1
  
  db1a895108c0b913e94190d2c38ce3b2a8db27b5
- SHA256
  
  978485b715b5121add54f1c9443073f5e3f4aa7184e7b678074b6a3c147e7cb6
- SHA512
  
  ed9e1b20e4dc92597d3b65d19b5c0c2f786d665e6bd26ef4de99f67e7557263550d4463cd890f6e56c8b6d0dc498f619786bdc7a5649a154ddca2666b4fc0b8d
- SSDEEP
  
  6144:ugvY1WvfVnVIgGEmOyC78ShvIwxa7dWbb5JUfqOyC78ShvIwxa7dWbbb:/vYcvnwFQIwAxWJJUKFQIwAxWr
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2