f79626b87661e82596c176a0c452e4743372c049e27be1133f927fd5bcac9b0a | Triage

Sharing

General

Target

ee220d53a6548907f8b3a08afeaad8d0_NeikiAnalytics.exe
Size

248KB
Sample

240517-sy9ddsec3t
MD5

ee220d53a6548907f8b3a08afeaad8d0
SHA1

2ba0859cfc4cec2eefc89bc3e2d2f3800e29a833
SHA256

f79626b87661e82596c176a0c452e4743372c049e27be1133f927fd5bcac9b0a
SHA512

65b01ab920ed88158faa3dbec49ea2fc4d7b80edd06910f6a6d203352e652e001ff2b5aa76eba5658e1f17753d1ef3db297937aea3caff4cb48220ea2c8b8fe9
SSDEEP

1536:/QVlQnb+mR3qCzB30xVK5QVNtBqqGBABiovRXlhn4SPIdVHReHXc/B07urCySS+s:YG+Q3qCVExsGVAURfE+HXAB0kCySYo0B

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ee220d53a6548907f8b3a08afeaad8d0_NeikiAnalytics.exe
- Size
  
  248KB
- MD5
  
  ee220d53a6548907f8b3a08afeaad8d0
- SHA1
  
  2ba0859cfc4cec2eefc89bc3e2d2f3800e29a833
- SHA256
  
  f79626b87661e82596c176a0c452e4743372c049e27be1133f927fd5bcac9b0a
- SHA512
  
  65b01ab920ed88158faa3dbec49ea2fc4d7b80edd06910f6a6d203352e652e001ff2b5aa76eba5658e1f17753d1ef3db297937aea3caff4cb48220ea2c8b8fe9
- SSDEEP
  
  1536:/QVlQnb+mR3qCzB30xVK5QVNtBqqGBABiovRXlhn4SPIdVHReHXc/B07urCySS+s:YG+Q3qCVExsGVAURfE+HXAB0kCySYo0B
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2