de4123d18e16aba50da057630251f76406ef9c2c57274d7bd2efcfdb78059ae3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

988c8e2e949255a2f31173a9d1fbb270_NeikiAnalytics.exe
Size

89KB
Sample

240517-dyy54afb5t
MD5

988c8e2e949255a2f31173a9d1fbb270
SHA1

db13cecb7a604b90d9d13f43f02449220f967d8c
SHA256

de4123d18e16aba50da057630251f76406ef9c2c57274d7bd2efcfdb78059ae3
SHA512

672b448479003f04e7ce0bf5af335387178fed372d063e5349187a6162bcc50821eea2830090714c3f76fc0d940a11b5fe5e397e8f7dfe07fde05ebd5126bb1e
SSDEEP

1536:pvKCuSycV9JAEwLZmi5UbwFtVKkxbzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzi:pvKC3yLTGUnwUxeujb5ZXUf2iuOj22lN

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  988c8e2e949255a2f31173a9d1fbb270_NeikiAnalytics.exe
- Size
  
  89KB
- MD5
  
  988c8e2e949255a2f31173a9d1fbb270
- SHA1
  
  db13cecb7a604b90d9d13f43f02449220f967d8c
- SHA256
  
  de4123d18e16aba50da057630251f76406ef9c2c57274d7bd2efcfdb78059ae3
- SHA512
  
  672b448479003f04e7ce0bf5af335387178fed372d063e5349187a6162bcc50821eea2830090714c3f76fc0d940a11b5fe5e397e8f7dfe07fde05ebd5126bb1e
- SSDEEP
  
  1536:pvKCuSycV9JAEwLZmi5UbwFtVKkxbzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzi:pvKC3yLTGUnwUxeujb5ZXUf2iuOj22lN
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2