24ffbfb896e3d289237f3b1e99fa96f4af57b1d2aad5f79970cb0e8f705314ce | Triage

Sharing

General

Target

e7c602b6003a8663c16cf092697f3220_NeikiAnalytics.exe
Size

74KB
Sample

240517-lpn8jace65
MD5

e7c602b6003a8663c16cf092697f3220
SHA1

00f9e722a4c24d2f48e5c13004fe964989308418
SHA256

24ffbfb896e3d289237f3b1e99fa96f4af57b1d2aad5f79970cb0e8f705314ce
SHA512

0dc504092ae91a6e4e722473f61ae2a6fbb003a51daa8b01cd0d67fd89c63ac744b229a3c9382e618981e0bf710035ad0ed733454a4e65e242d8615253f6f2b9
SSDEEP

1536:1PY1SEBWJmHob5A+/Ex+c+XUr/BL+BHt3O9bgqYD:t0Y0IGXWUjN+BHteiqYD

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e7c602b6003a8663c16cf092697f3220_NeikiAnalytics.exe
- Size
  
  74KB
- MD5
  
  e7c602b6003a8663c16cf092697f3220
- SHA1
  
  00f9e722a4c24d2f48e5c13004fe964989308418
- SHA256
  
  24ffbfb896e3d289237f3b1e99fa96f4af57b1d2aad5f79970cb0e8f705314ce
- SHA512
  
  0dc504092ae91a6e4e722473f61ae2a6fbb003a51daa8b01cd0d67fd89c63ac744b229a3c9382e618981e0bf710035ad0ed733454a4e65e242d8615253f6f2b9
- SSDEEP
  
  1536:1PY1SEBWJmHob5A+/Ex+c+XUr/BL+BHt3O9bgqYD:t0Y0IGXWUjN+BHteiqYD
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2