701571e95c43e9f475c6c877e7f419d05bb85953cd48ef8b7299ac487398f2e5 | Triage

Sharing

General

Target

ed93d961c08fb4b0b1a0e9116c836130_NeikiAnalytics.exe
Size

96KB
Sample

240517-smg5rsde2z
MD5

ed93d961c08fb4b0b1a0e9116c836130
SHA1

43d2dc2ade5b213a93a65d93988c2b4475b64298
SHA256

701571e95c43e9f475c6c877e7f419d05bb85953cd48ef8b7299ac487398f2e5
SHA512

87c6bf4e52a71eb5a99dd2d48f28ac2d7614e533ab4789f164c43fba69fbbb7f87a1c50f3f31b89045a3a4861af02baf1846b02539768e87d7af8785e30861e6
SSDEEP

1536:v369hN2/q94aOqHcoM3+APgnDNBrcN4i6tBYuR3PlNPMAZ:v36tWq94SA+APgxed6BYudlNPMAZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ed93d961c08fb4b0b1a0e9116c836130_NeikiAnalytics.exe
- Size
  
  96KB
- MD5
  
  ed93d961c08fb4b0b1a0e9116c836130
- SHA1
  
  43d2dc2ade5b213a93a65d93988c2b4475b64298
- SHA256
  
  701571e95c43e9f475c6c877e7f419d05bb85953cd48ef8b7299ac487398f2e5
- SHA512
  
  87c6bf4e52a71eb5a99dd2d48f28ac2d7614e533ab4789f164c43fba69fbbb7f87a1c50f3f31b89045a3a4861af02baf1846b02539768e87d7af8785e30861e6
- SSDEEP
  
  1536:v369hN2/q94aOqHcoM3+APgnDNBrcN4i6tBYuR3PlNPMAZ:v36tWq94SA+APgxed6BYudlNPMAZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2