17f1055e6efb36bf49fad00ec95fc06e86d29b600daaa9a966d09c496c425e2d | Triage

Sharing

General

Target

1af6cf85db1446f38f2c30deb2043d80_NeikiAnalytics.exe
Size

64KB
Sample

240517-xqp21aea59
MD5

1af6cf85db1446f38f2c30deb2043d80
SHA1

1eb31316583c1e2574994f08885963b25b85fc52
SHA256

17f1055e6efb36bf49fad00ec95fc06e86d29b600daaa9a966d09c496c425e2d
SHA512

fc19ab69b704a947012d8cba9500a68614c206205d373bf98d023372450d6d1eeb5414ec63799656dcc47d96a0a3ebe53ec13aef1777cc2126a88d7fa36ec7ae
SSDEEP

1536:2kEj4GEJplL9HTyFW6ZbtvFtZBKMuu8r5Fg3c2L3KAMCeW:2kC4GEJpbydvFtZBKJA6pW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1af6cf85db1446f38f2c30deb2043d80_NeikiAnalytics.exe
- Size
  
  64KB
- MD5
  
  1af6cf85db1446f38f2c30deb2043d80
- SHA1
  
  1eb31316583c1e2574994f08885963b25b85fc52
- SHA256
  
  17f1055e6efb36bf49fad00ec95fc06e86d29b600daaa9a966d09c496c425e2d
- SHA512
  
  fc19ab69b704a947012d8cba9500a68614c206205d373bf98d023372450d6d1eeb5414ec63799656dcc47d96a0a3ebe53ec13aef1777cc2126a88d7fa36ec7ae
- SSDEEP
  
  1536:2kEj4GEJplL9HTyFW6ZbtvFtZBKMuu8r5Fg3c2L3KAMCeW:2kC4GEJpbydvFtZBKJA6pW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2