3636da2672c314aa420a1a85ede84308f1aa0bf63a40b971136ab6b9fe7eaa46 | Triage

Sharing

General

Target

dc688ec08c14501981084e9ac721e260_NeikiAnalytics
Size

163KB
Sample

240516-ne8kjaad94
MD5

dc688ec08c14501981084e9ac721e260
SHA1

e40e88e336aff7d88bc4645b9a98301e5290be11
SHA256

3636da2672c314aa420a1a85ede84308f1aa0bf63a40b971136ab6b9fe7eaa46
SHA512

f01301f14071590a7934635de85feef8314896392615e7df1fb8e3a10f2cae746dd8dbd73fd1fdc527f073f24a4d1e08bdaefe27b06e74ea280ac797eb91d5b2
SSDEEP

1536:P005veIrPAMoQRrW259BTkNtA6TlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:M4XrPAArr7WNtA6TltOrWKDBr+yJb

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  dc688ec08c14501981084e9ac721e260_NeikiAnalytics
- Size
  
  163KB
- MD5
  
  dc688ec08c14501981084e9ac721e260
- SHA1
  
  e40e88e336aff7d88bc4645b9a98301e5290be11
- SHA256
  
  3636da2672c314aa420a1a85ede84308f1aa0bf63a40b971136ab6b9fe7eaa46
- SHA512
  
  f01301f14071590a7934635de85feef8314896392615e7df1fb8e3a10f2cae746dd8dbd73fd1fdc527f073f24a4d1e08bdaefe27b06e74ea280ac797eb91d5b2
- SSDEEP
  
  1536:P005veIrPAMoQRrW259BTkNtA6TlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:M4XrPAArr7WNtA6TltOrWKDBr+yJb
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2