f70388dc970a5796bba91e4a5e7180694112eba99d31bca6f50be7692744c0b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b3eb9a66f4ee0e8273c34d523c52fd0_NeikiAnalytics
Size

295KB
Sample

240515-y4gs8aaa9t
MD5

2b3eb9a66f4ee0e8273c34d523c52fd0
SHA1

46bccac43cb4e98635fe603b58b68add73bc3f60
SHA256

f70388dc970a5796bba91e4a5e7180694112eba99d31bca6f50be7692744c0b1
SHA512

d3716e1159a25a5ef72ba8dbc6058ed3fb3f5a179461b941804779966424d73c0231e601c6feb40aafabe886513528ed887eb8edf54d6619e609a4c5c6909913
SSDEEP

6144:JnB3TPkLggyaWQ1PY1PRe19V+tbFOLM77OLY:TEhV6fe0tsNM

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2b3eb9a66f4ee0e8273c34d523c52fd0_NeikiAnalytics
- Size
  
  295KB
- MD5
  
  2b3eb9a66f4ee0e8273c34d523c52fd0
- SHA1
  
  46bccac43cb4e98635fe603b58b68add73bc3f60
- SHA256
  
  f70388dc970a5796bba91e4a5e7180694112eba99d31bca6f50be7692744c0b1
- SHA512
  
  d3716e1159a25a5ef72ba8dbc6058ed3fb3f5a179461b941804779966424d73c0231e601c6feb40aafabe886513528ed887eb8edf54d6619e609a4c5c6909913
- SSDEEP
  
  6144:JnB3TPkLggyaWQ1PY1PRe19V+tbFOLM77OLY:TEhV6fe0tsNM
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2