8c2b1639390ec07b09693c341b09ed6946be136e54851c3982d3c7bce365768f | Triage

Sharing

General

Target

38d1b5bcdf998b6ea7238a16a965b1b0_NeikiAnalytics.exe
Size

174KB
Sample

240516-z6vzasgh6y
MD5

38d1b5bcdf998b6ea7238a16a965b1b0
SHA1

6614ae587686d73efbc8bd0c00f28f756e800624
SHA256

8c2b1639390ec07b09693c341b09ed6946be136e54851c3982d3c7bce365768f
SHA512

6094a0c00848da3246cda02e539446d5d2083f2fa56ab5e6130f0be6615adc6d953626202c0a2e6477810c425708cb44b699fc73a86e6302f3528df9223bbb46
SSDEEP

3072:iuvwY1rUrZSx485Bt4wnrzeA07DxSvITW/cbFGS92TlTTtttSneicdq:B11A4JawnraAYhCw92TlTTttt5D

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  38d1b5bcdf998b6ea7238a16a965b1b0_NeikiAnalytics.exe
- Size
  
  174KB
- MD5
  
  38d1b5bcdf998b6ea7238a16a965b1b0
- SHA1
  
  6614ae587686d73efbc8bd0c00f28f756e800624
- SHA256
  
  8c2b1639390ec07b09693c341b09ed6946be136e54851c3982d3c7bce365768f
- SHA512
  
  6094a0c00848da3246cda02e539446d5d2083f2fa56ab5e6130f0be6615adc6d953626202c0a2e6477810c425708cb44b699fc73a86e6302f3528df9223bbb46
- SSDEEP
  
  3072:iuvwY1rUrZSx485Bt4wnrzeA07DxSvITW/cbFGS92TlTTtttSneicdq:B11A4JawnraAYhCw92TlTTttt5D
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2