6786aa5bfe8f99d3e262e22c349bff4e77f1f3c32c1cbb00e669ee745d2af0b4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40fc3616d6e72bf109a53312883726a0_NeikiAnalytics.exe
Size

59KB
Sample

240516-1rw4gsac65
MD5

40fc3616d6e72bf109a53312883726a0
SHA1

7e4275eef528ef8e312b582e5d7f3d283f3dbbf9
SHA256

6786aa5bfe8f99d3e262e22c349bff4e77f1f3c32c1cbb00e669ee745d2af0b4
SHA512

4e2398a8f2e7d683803bb6c0633e0200cfef5f1928790ca5b11465abbed73e6e86353b736a4c80c681673c4781ab88b027acfa0238080b120a87f1c911503fd5
SSDEEP

768:OApPug4qwiPo0NMjq/q8fbrKBYYJYeEefzZMwH7j1tTkaR8O+wLKeHG4Z/1H5yDz:RV9tSHJserx51pGaANCyVso

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  40fc3616d6e72bf109a53312883726a0_NeikiAnalytics.exe
- Size
  
  59KB
- MD5
  
  40fc3616d6e72bf109a53312883726a0
- SHA1
  
  7e4275eef528ef8e312b582e5d7f3d283f3dbbf9
- SHA256
  
  6786aa5bfe8f99d3e262e22c349bff4e77f1f3c32c1cbb00e669ee745d2af0b4
- SHA512
  
  4e2398a8f2e7d683803bb6c0633e0200cfef5f1928790ca5b11465abbed73e6e86353b736a4c80c681673c4781ab88b027acfa0238080b120a87f1c911503fd5
- SSDEEP
  
  768:OApPug4qwiPo0NMjq/q8fbrKBYYJYeEefzZMwH7j1tTkaR8O+wLKeHG4Z/1H5yDz:RV9tSHJserx51pGaANCyVso
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2