57c0ef811b9122e3f6bf273358f5e46cb98a84c23fd82d34436b5448dcd97520 | Triage

Sharing

General

Target

bfc08722fdc092306b52d2cab5096b70_NeikiAnalytics
Size

63KB
Sample

240516-jllxwsba82
MD5

bfc08722fdc092306b52d2cab5096b70
SHA1

c02f443f6486a2f8111cfd79f99cc712d2b5e483
SHA256

57c0ef811b9122e3f6bf273358f5e46cb98a84c23fd82d34436b5448dcd97520
SHA512

4fc6436639946b69394eb33c0d5d70c02a741f128ff7fe74cc8a1696d35d2af235eefb75df637d4311f7a61026d562daef8bba62603c5eaea61fd61d16f7320c
SSDEEP

1536:qAlQKclxajug3jEcnPOE2n+V3bEn9rjDHE:BlLclwj/3jEcGE2noLk9DHE

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  bfc08722fdc092306b52d2cab5096b70_NeikiAnalytics
- Size
  
  63KB
- MD5
  
  bfc08722fdc092306b52d2cab5096b70
- SHA1
  
  c02f443f6486a2f8111cfd79f99cc712d2b5e483
- SHA256
  
  57c0ef811b9122e3f6bf273358f5e46cb98a84c23fd82d34436b5448dcd97520
- SHA512
  
  4fc6436639946b69394eb33c0d5d70c02a741f128ff7fe74cc8a1696d35d2af235eefb75df637d4311f7a61026d562daef8bba62603c5eaea61fd61d16f7320c
- SSDEEP
  
  1536:qAlQKclxajug3jEcnPOE2n+V3bEn9rjDHE:BlLclwj/3jEcGE2noLk9DHE
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2