d92281e0ea5d683875d2156863d066a450bae2449db53ab50f332492a58f4006 | Triage

Sharing

General

Target

2da72334b84ccc28bbff442953651d8d_NeikiAnalytics.exe
Size

173KB
Sample

240516-zel73sfd5z
MD5

2da72334b84ccc28bbff442953651d8d
SHA1

9de275b765283f5e9ea728f9e49007bddc3d7f38
SHA256

d92281e0ea5d683875d2156863d066a450bae2449db53ab50f332492a58f4006
SHA512

96972fa619706df3eec9049f797adbdf30698a912b75a482922e827f53d7b9dfaec83c687cc56dd5d9ace0df36bb68279d59d2d37c19881ba0f50b0100c40f85
SSDEEP

3072:HdUNPuDvyp7HEJhDMFPyf6ZNGH0HwVaD1i/MwGsGnDc9nhVizLrRo6+:fyp7HE6G6ZNs/VKi/MwGsmLrRo6+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2da72334b84ccc28bbff442953651d8d_NeikiAnalytics.exe
- Size
  
  173KB
- MD5
  
  2da72334b84ccc28bbff442953651d8d
- SHA1
  
  9de275b765283f5e9ea728f9e49007bddc3d7f38
- SHA256
  
  d92281e0ea5d683875d2156863d066a450bae2449db53ab50f332492a58f4006
- SHA512
  
  96972fa619706df3eec9049f797adbdf30698a912b75a482922e827f53d7b9dfaec83c687cc56dd5d9ace0df36bb68279d59d2d37c19881ba0f50b0100c40f85
- SSDEEP
  
  3072:HdUNPuDvyp7HEJhDMFPyf6ZNGH0HwVaD1i/MwGsGnDc9nhVizLrRo6+:fyp7HE6G6ZNs/VKi/MwGsmLrRo6+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2