9354988f26729e962b46d9a8184dd19102fbc920c350f6a3d0890cd1853bdb95 | Triage

Sharing

General

Target

1449a6591ecfbd897798ed080f520870_NeikiAnalytics.exe
Size

370KB
Sample

240517-wpa11sbg6x
MD5

1449a6591ecfbd897798ed080f520870
SHA1

b9511db6ec4a1823566b12130589aa2e4d43586b
SHA256

9354988f26729e962b46d9a8184dd19102fbc920c350f6a3d0890cd1853bdb95
SHA512

5622dad998d0d128c6a108a21491f400fd9bcfe7435fc3a84e7b14888195e831b8041cc8999b7333229ad7018fd61ba37ce8a7353338c70cf7d69a1df5b62144
SSDEEP

6144:UNeFL3JYpNyGpNDU9fwRE5H2dpNonHd/twMLc2Ao2pEYTBFqZNjE1rhJg3htVtnb:UN2lqUfCyHJWx67fLx67

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1449a6591ecfbd897798ed080f520870_NeikiAnalytics.exe
- Size
  
  370KB
- MD5
  
  1449a6591ecfbd897798ed080f520870
- SHA1
  
  b9511db6ec4a1823566b12130589aa2e4d43586b
- SHA256
  
  9354988f26729e962b46d9a8184dd19102fbc920c350f6a3d0890cd1853bdb95
- SHA512
  
  5622dad998d0d128c6a108a21491f400fd9bcfe7435fc3a84e7b14888195e831b8041cc8999b7333229ad7018fd61ba37ce8a7353338c70cf7d69a1df5b62144
- SSDEEP
  
  6144:UNeFL3JYpNyGpNDU9fwRE5H2dpNonHd/twMLc2Ao2pEYTBFqZNjE1rhJg3htVtnb:UN2lqUfCyHJWx67fLx67
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2