c6d074424cba36bf2d6b25a620b6ac2e7798a8bd385e6934726472b84d447658 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb715a196b39732c85f85bfe7c2ca550_NeikiAnalytics.exe
Size

64KB
Sample

240517-n5q36sgb8s
MD5

eb715a196b39732c85f85bfe7c2ca550
SHA1

c6d7ec9125a1de2b61ca5521323acda3c7c70bc7
SHA256

c6d074424cba36bf2d6b25a620b6ac2e7798a8bd385e6934726472b84d447658
SHA512

845d336db533c334def9dd3419ba667cb8de1e8b9680a7bd2b34273a2dede945d2eadd013a9d384fe744e84d0d8396d7ef6cbbb147041dcadefb1416036b76eb
SSDEEP

1536:6Pmh/oJmGaCbaHoOeB9tQwSDA29vBFOcb1ZuYDPf:6JHfaIOs5SPpbb1ZuY7f

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  eb715a196b39732c85f85bfe7c2ca550_NeikiAnalytics.exe
- Size
  
  64KB
- MD5
  
  eb715a196b39732c85f85bfe7c2ca550
- SHA1
  
  c6d7ec9125a1de2b61ca5521323acda3c7c70bc7
- SHA256
  
  c6d074424cba36bf2d6b25a620b6ac2e7798a8bd385e6934726472b84d447658
- SHA512
  
  845d336db533c334def9dd3419ba667cb8de1e8b9680a7bd2b34273a2dede945d2eadd013a9d384fe744e84d0d8396d7ef6cbbb147041dcadefb1416036b76eb
- SSDEEP
  
  1536:6Pmh/oJmGaCbaHoOeB9tQwSDA29vBFOcb1ZuYDPf:6JHfaIOs5SPpbb1ZuY7f
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2