3f1b633a5f645a01a9d987cbbd11495cfb126cbba3bc046532fed1ea7da1ba3f | Triage

Sharing

General

Target

df800fdc7e95e518f6ebe947099c9b70_NeikiAnalytics.exe
Size

80KB
Sample

240517-kk16vsab58
MD5

df800fdc7e95e518f6ebe947099c9b70
SHA1

cb36713c75e7fd3feb6694eb9fe1ad99c481065a
SHA256

3f1b633a5f645a01a9d987cbbd11495cfb126cbba3bc046532fed1ea7da1ba3f
SHA512

cdd3c2c0aa3eae3356edaab68f71ad2f53464f06e9a6346ae9235bacf25d8c7db092beeb5f1d73c3a0de8f58c29f29e9879ecfe127bbf3accb91c93d96755a46
SSDEEP

1536:i9s5Yxh/1bhxHVa39azDfWqdMVrlEFtyb7IYOOqw4Tv:es2BzHUNazTWqAhELy1MTTv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  df800fdc7e95e518f6ebe947099c9b70_NeikiAnalytics.exe
- Size
  
  80KB
- MD5
  
  df800fdc7e95e518f6ebe947099c9b70
- SHA1
  
  cb36713c75e7fd3feb6694eb9fe1ad99c481065a
- SHA256
  
  3f1b633a5f645a01a9d987cbbd11495cfb126cbba3bc046532fed1ea7da1ba3f
- SHA512
  
  cdd3c2c0aa3eae3356edaab68f71ad2f53464f06e9a6346ae9235bacf25d8c7db092beeb5f1d73c3a0de8f58c29f29e9879ecfe127bbf3accb91c93d96755a46
- SSDEEP
  
  1536:i9s5Yxh/1bhxHVa39azDfWqdMVrlEFtyb7IYOOqw4Tv:es2BzHUNazTWqAhELy1MTTv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2