3ca61d0ec4560051fda6e8b6a4adfefd273f74af0178b654acdf258af6f825bf | Triage

Sharing

General

Target

ed4927b2475b63575d1742ce83f53f20_NeikiAnalytics.exe
Size

512KB
Sample

240517-sf1njadc98
MD5

ed4927b2475b63575d1742ce83f53f20
SHA1

7297b2486c57c975473cfa5afdd75ad6b21e6bb3
SHA256

3ca61d0ec4560051fda6e8b6a4adfefd273f74af0178b654acdf258af6f825bf
SHA512

912a39fde2734880fd85e687569c2b4ac94975152da6686d8e548348edfab0fb737d26abf92892b5e69b9bf300c4b7472dd822bb55ab7d155f6671cedcd039b1
SSDEEP

6144:NPw+853XBpnTfwNPbAvjDAcXxxXfY09cnEWPDZ:NlQBpnchWcZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ed4927b2475b63575d1742ce83f53f20_NeikiAnalytics.exe
- Size
  
  512KB
- MD5
  
  ed4927b2475b63575d1742ce83f53f20
- SHA1
  
  7297b2486c57c975473cfa5afdd75ad6b21e6bb3
- SHA256
  
  3ca61d0ec4560051fda6e8b6a4adfefd273f74af0178b654acdf258af6f825bf
- SHA512
  
  912a39fde2734880fd85e687569c2b4ac94975152da6686d8e548348edfab0fb737d26abf92892b5e69b9bf300c4b7472dd822bb55ab7d155f6671cedcd039b1
- SSDEEP
  
  6144:NPw+853XBpnTfwNPbAvjDAcXxxXfY09cnEWPDZ:NlQBpnchWcZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2