cb7859362b7aa015709964a7b7680612ceb2fb9e130f1064482e1e2db991e1d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d7f01049088eebd22002831e12b3c30_NeikiAnalytics.exe
Size

52KB
Sample

240516-3xr3tsfc8x
MD5

5d7f01049088eebd22002831e12b3c30
SHA1

011d76983334c71482091df2b09ef73609b14541
SHA256

cb7859362b7aa015709964a7b7680612ceb2fb9e130f1064482e1e2db991e1d2
SHA512

d972c0b60e934435ca9278bcdaff2640e0ad49153296e684cec8789f7ee2232d2277970d2691897416d9b4948b8746aac73b122babd29066401e3fe25e514fac
SSDEEP

1536:tjfxrwTrKMpk0Yytr+oVlnp/pAlKPuMAdKZ:36kDy9Dt+lKPuMRZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5d7f01049088eebd22002831e12b3c30_NeikiAnalytics.exe
- Size
  
  52KB
- MD5
  
  5d7f01049088eebd22002831e12b3c30
- SHA1
  
  011d76983334c71482091df2b09ef73609b14541
- SHA256
  
  cb7859362b7aa015709964a7b7680612ceb2fb9e130f1064482e1e2db991e1d2
- SHA512
  
  d972c0b60e934435ca9278bcdaff2640e0ad49153296e684cec8789f7ee2232d2277970d2691897416d9b4948b8746aac73b122babd29066401e3fe25e514fac
- SSDEEP
  
  1536:tjfxrwTrKMpk0Yytr+oVlnp/pAlKPuMAdKZ:36kDy9Dt+lKPuMRZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2