a1f5d68063061f5a68c22345a2dc900af3654f4450f00ebefb1f291c5bae3c22 | Triage

Sharing

General

Target

da8f034b0a45659d78dbed667a7fbeb0_NeikiAnalytics
Size

304KB
Sample

240516-mgk2ksgf23
MD5

da8f034b0a45659d78dbed667a7fbeb0
SHA1

f132d9af5e327e2d642756dc9748c90ce51adc9b
SHA256

a1f5d68063061f5a68c22345a2dc900af3654f4450f00ebefb1f291c5bae3c22
SHA512

5ec3f732820ed8db1e9db2b7b72b4d4d8051abf042d9ed5f0efa3d3b336a63fe9dfc0f627a6cb0f9ad15713f420fd7b96a921cd35195b53ce6f2df9a309a694a
SSDEEP

6144:pwZ40HjcnTD5NUnE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOh:GZ40HgnTD3/aAD6RrI1+lDMEAD6Rm

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  da8f034b0a45659d78dbed667a7fbeb0_NeikiAnalytics
- Size
  
  304KB
- MD5
  
  da8f034b0a45659d78dbed667a7fbeb0
- SHA1
  
  f132d9af5e327e2d642756dc9748c90ce51adc9b
- SHA256
  
  a1f5d68063061f5a68c22345a2dc900af3654f4450f00ebefb1f291c5bae3c22
- SHA512
  
  5ec3f732820ed8db1e9db2b7b72b4d4d8051abf042d9ed5f0efa3d3b336a63fe9dfc0f627a6cb0f9ad15713f420fd7b96a921cd35195b53ce6f2df9a309a694a
- SSDEEP
  
  6144:pwZ40HjcnTD5NUnE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOh:GZ40HgnTD3/aAD6RrI1+lDMEAD6Rm
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2