9eca4c6e59d2d209f7969440283616bbf676b2c4243b5883f705ba594f8161a2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e0c9eca949424ba54d1b30ea3aa23a80_NeikiAnalytics
Size

94KB
Sample

240516-qvblvafe47
MD5

e0c9eca949424ba54d1b30ea3aa23a80
SHA1

32e57d25e3088befcc258eb5b7ac25f5be1d5bee
SHA256

9eca4c6e59d2d209f7969440283616bbf676b2c4243b5883f705ba594f8161a2
SHA512

d588dabc8cbed1f5bff03c57204b1962da8682fde53f339ef196b5a6c0e59403b1638b1a02b8414a58443d347e6393be66eeb7544f32e3f3c0a96cbc80d2f5de
SSDEEP

1536:Xpuk/N7R6edigsEMpoi0h0+q86ZbyANDgU7NiASqFwGOOvOOOOOOOOOOOOOOOaWN:5u816EigIuCtO2RwGOOvOOOOOOOOOOOl

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e0c9eca949424ba54d1b30ea3aa23a80_NeikiAnalytics
- Size
  
  94KB
- MD5
  
  e0c9eca949424ba54d1b30ea3aa23a80
- SHA1
  
  32e57d25e3088befcc258eb5b7ac25f5be1d5bee
- SHA256
  
  9eca4c6e59d2d209f7969440283616bbf676b2c4243b5883f705ba594f8161a2
- SHA512
  
  d588dabc8cbed1f5bff03c57204b1962da8682fde53f339ef196b5a6c0e59403b1638b1a02b8414a58443d347e6393be66eeb7544f32e3f3c0a96cbc80d2f5de
- SSDEEP
  
  1536:Xpuk/N7R6edigsEMpoi0h0+q86ZbyANDgU7NiASqFwGOOvOOOOOOOOOOOOOOOaWN:5u816EigIuCtO2RwGOOvOOOOOOOOOOOl
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2