c79711d5941bb66cb027fc34e5e8458e41c7615b6b407c2f00af1c79044044a0 | Triage

Sharing

General

Target

2514d023508c76e8aea244c01dd643b0_NeikiAnalytics.exe
Size

301KB
Sample

240516-yspdxsea7w
MD5

2514d023508c76e8aea244c01dd643b0
SHA1

a9940c781be2bb994a919274051621ef5925e897
SHA256

c79711d5941bb66cb027fc34e5e8458e41c7615b6b407c2f00af1c79044044a0
SHA512

2a6feab49535fbbc3fa36ddcd6ea9ea99c4c42d4b4e3dd9bdcd78032dd0e8ac764c1bc24323c5d26ba3e44bd885eb95e8a4d2097f7898c1d38321c590948a116
SSDEEP

6144:PnGL1mZfm+kte+MZmYm+DakBpvXBwNBezP:PGe+Y/+TezP

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2514d023508c76e8aea244c01dd643b0_NeikiAnalytics.exe
- Size
  
  301KB
- MD5
  
  2514d023508c76e8aea244c01dd643b0
- SHA1
  
  a9940c781be2bb994a919274051621ef5925e897
- SHA256
  
  c79711d5941bb66cb027fc34e5e8458e41c7615b6b407c2f00af1c79044044a0
- SHA512
  
  2a6feab49535fbbc3fa36ddcd6ea9ea99c4c42d4b4e3dd9bdcd78032dd0e8ac764c1bc24323c5d26ba3e44bd885eb95e8a4d2097f7898c1d38321c590948a116
- SSDEEP
  
  6144:PnGL1mZfm+kte+MZmYm+DakBpvXBwNBezP:PGe+Y/+TezP
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2