99b08f0fca21a976e401cadb8d3ba678b1a8c64f6a06fb04d5d76d953805ff93 | Triage

Sharing

General

Target

cc42f4be651fbe88efe506dba369c650_NeikiAnalytics.exe
Size

483KB
Sample

240517-h3w9hsfd32
MD5

cc42f4be651fbe88efe506dba369c650
SHA1

4a94a1ffc11a4c53b543b03114dfc652ef077517
SHA256

99b08f0fca21a976e401cadb8d3ba678b1a8c64f6a06fb04d5d76d953805ff93
SHA512

a7ed5f98e338fea2dc94b093434aadf11035463fded732854204d9b3fce6fce53fc45caf3a8438fc651dbd771997492e861ce74fa3963726f7a3313e6859c9c4
SSDEEP

6144:+l/uqE8f9eKlFxM2o5CRVrtv35CPXbo92ynn8sbeWDJk4sNnVCj:+l/5E8YAMIRFbet4OnV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  cc42f4be651fbe88efe506dba369c650_NeikiAnalytics.exe
- Size
  
  483KB
- MD5
  
  cc42f4be651fbe88efe506dba369c650
- SHA1
  
  4a94a1ffc11a4c53b543b03114dfc652ef077517
- SHA256
  
  99b08f0fca21a976e401cadb8d3ba678b1a8c64f6a06fb04d5d76d953805ff93
- SHA512
  
  a7ed5f98e338fea2dc94b093434aadf11035463fded732854204d9b3fce6fce53fc45caf3a8438fc651dbd771997492e861ce74fa3963726f7a3313e6859c9c4
- SSDEEP
  
  6144:+l/uqE8f9eKlFxM2o5CRVrtv35CPXbo92ynn8sbeWDJk4sNnVCj:+l/5E8YAMIRFbet4OnV
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2