b621acd7debcbda3cde85f470f5fc2a5d3af608c8b40b7dc1b59b959a1191296 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1e4e4a12e39953b1e4161dd7bc86e660_NeikiAnalytics
Size

120KB
Sample

240515-x374cagb73
MD5

1e4e4a12e39953b1e4161dd7bc86e660
SHA1

51ae22bb45df3eb0885ff2cecfecade62ac15c81
SHA256

b621acd7debcbda3cde85f470f5fc2a5d3af608c8b40b7dc1b59b959a1191296
SHA512

c5d5dd3de5b6092f34fe5ccf8255d9d627a216461daea3e43cc0f205e7df772a0a0e10cc329d0f3b6fe6363154b8ddfca80612b48520a72e1988848387ee2cf2
SSDEEP

1536:bPergFre3vnO8dx7XH3VOOjcmUy4PKOt4GTBvzsORjz0cZ44mjD9r823F4:a8FrknOeLH3kYc6HYP2i/mjRrz3C

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1e4e4a12e39953b1e4161dd7bc86e660_NeikiAnalytics
- Size
  
  120KB
- MD5
  
  1e4e4a12e39953b1e4161dd7bc86e660
- SHA1
  
  51ae22bb45df3eb0885ff2cecfecade62ac15c81
- SHA256
  
  b621acd7debcbda3cde85f470f5fc2a5d3af608c8b40b7dc1b59b959a1191296
- SHA512
  
  c5d5dd3de5b6092f34fe5ccf8255d9d627a216461daea3e43cc0f205e7df772a0a0e10cc329d0f3b6fe6363154b8ddfca80612b48520a72e1988848387ee2cf2
- SSDEEP
  
  1536:bPergFre3vnO8dx7XH3VOOjcmUy4PKOt4GTBvzsORjz0cZ44mjD9r823F4:a8FrknOeLH3kYc6HYP2i/mjRrz3C
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2