6598c966ffef998074483c3fe5ac768c5103d6527fa02011a762c35b922083e6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e04a2bcd4fd63589d0a4d25928ae66b0_NeikiAnalytics
Size

71KB
Sample

240516-qjty2seh45
MD5

e04a2bcd4fd63589d0a4d25928ae66b0
SHA1

a244ab6c63ae69d7725a9c50d461fe1631bb9751
SHA256

6598c966ffef998074483c3fe5ac768c5103d6527fa02011a762c35b922083e6
SHA512

2042e381b809f9ac6bfdaccbe0b3541499969cd16cf0f4dab2e0cba55959d0f762c8eb28e40ec123a73056eddd19e756d04a003b7d6e51cbb6b4201466974b8a
SSDEEP

1536:m6TJucyrK/thUqppKU8ZQOS0oGIrOURQ7DbEyRCRRRoR4Rk:vJAythUQKUnGMerEy032ya

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e04a2bcd4fd63589d0a4d25928ae66b0_NeikiAnalytics
- Size
  
  71KB
- MD5
  
  e04a2bcd4fd63589d0a4d25928ae66b0
- SHA1
  
  a244ab6c63ae69d7725a9c50d461fe1631bb9751
- SHA256
  
  6598c966ffef998074483c3fe5ac768c5103d6527fa02011a762c35b922083e6
- SHA512
  
  2042e381b809f9ac6bfdaccbe0b3541499969cd16cf0f4dab2e0cba55959d0f762c8eb28e40ec123a73056eddd19e756d04a003b7d6e51cbb6b4201466974b8a
- SSDEEP
  
  1536:m6TJucyrK/thUqppKU8ZQOS0oGIrOURQ7DbEyRCRRRoR4Rk:vJAythUQKUnGMerEy032ya
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2