b62fb2fb0b71351222a88f965bf3b7aaeb943759b64f7fd1c2b3a1c708ba9cad | Triage

Sharing

General

Target

dde1e0ed1ba558b931a53b98a60a8d00_NeikiAnalytics
Size

112KB
Sample

240516-pa8keabg3x
MD5

dde1e0ed1ba558b931a53b98a60a8d00
SHA1

2404aac5dca60836c8b713ca68be792a84379c95
SHA256

b62fb2fb0b71351222a88f965bf3b7aaeb943759b64f7fd1c2b3a1c708ba9cad
SHA512

a9a8a2a1c855750a0026cf065ed786b96ce4f1ebd8a75b71117694d5394f207d3135fcd10637aca7ddd6e0771c828a357d5d9eac02a5a880a912eae3da5a31a9
SSDEEP

3072:/wCk/mfcjIEHPpj0AhJ9IDlRxyhTbhgu+tAcr+:/wC/fehHPOAhsDshsra

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  dde1e0ed1ba558b931a53b98a60a8d00_NeikiAnalytics
- Size
  
  112KB
- MD5
  
  dde1e0ed1ba558b931a53b98a60a8d00
- SHA1
  
  2404aac5dca60836c8b713ca68be792a84379c95
- SHA256
  
  b62fb2fb0b71351222a88f965bf3b7aaeb943759b64f7fd1c2b3a1c708ba9cad
- SHA512
  
  a9a8a2a1c855750a0026cf065ed786b96ce4f1ebd8a75b71117694d5394f207d3135fcd10637aca7ddd6e0771c828a357d5d9eac02a5a880a912eae3da5a31a9
- SSDEEP
  
  3072:/wCk/mfcjIEHPpj0AhJ9IDlRxyhTbhgu+tAcr+:/wC/fehHPOAhsDshsra
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2