3d742e26e41ebc694b95500c0374e1e7af3ed375be320e3b7171498c45f34b69 | Triage

Sharing

General

Target

5c1f79f6ae7ff71217598035aa70c204_NeikiAnalytics.exe
Size

219KB
Sample

240516-3trmwsfa8x
MD5

5c1f79f6ae7ff71217598035aa70c204
SHA1

f2a20fa09b23980736832116a4a3384a6d6b1297
SHA256

3d742e26e41ebc694b95500c0374e1e7af3ed375be320e3b7171498c45f34b69
SHA512

68f93c2a417b3a63dd328f84155520558830c82827a207c955a288fa517cc79e810edf18decef30f03a03bc5650b007c92af58ff87a599c2bc3af42f63b2faac
SSDEEP

6144:siQCy+c93VzDOO0aDD4PCxdXXwSfYrwB:LyVOOdDD4PCxdXXwSfYr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5c1f79f6ae7ff71217598035aa70c204_NeikiAnalytics.exe
- Size
  
  219KB
- MD5
  
  5c1f79f6ae7ff71217598035aa70c204
- SHA1
  
  f2a20fa09b23980736832116a4a3384a6d6b1297
- SHA256
  
  3d742e26e41ebc694b95500c0374e1e7af3ed375be320e3b7171498c45f34b69
- SHA512
  
  68f93c2a417b3a63dd328f84155520558830c82827a207c955a288fa517cc79e810edf18decef30f03a03bc5650b007c92af58ff87a599c2bc3af42f63b2faac
- SSDEEP
  
  6144:siQCy+c93VzDOO0aDD4PCxdXXwSfYrwB:LyVOOdDD4PCxdXXwSfYr
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2