6b2d46d25dced0e9332d707c594bd46a27a67682ca186002c326412f380bffff | Triage

Sharing

General

Target

2314990600c0e2a2adb88b09da492700_NeikiAnalytics.exe
Size

128KB
Sample

240517-ydvx6aff35
MD5

2314990600c0e2a2adb88b09da492700
SHA1

73230aa711fc6a5e729f80299ed74d8057175fd4
SHA256

6b2d46d25dced0e9332d707c594bd46a27a67682ca186002c326412f380bffff
SHA512

b36509f5807f19b0c15833a86206cea2a0dc8ad0fe67dfbe2f617f4b42aa4252e21b080d5631c320812b17cbd6704c7641bedbdf7ac650eea3d6787cb645c986
SSDEEP

3072:t3FyYmYn4OF93TeFw0v0wnJcefSXQHPTTAkvB5DdcgFM9o:t3FyYJn4qt63tnJfKXqPTX7D7FMm

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2314990600c0e2a2adb88b09da492700_NeikiAnalytics.exe
- Size
  
  128KB
- MD5
  
  2314990600c0e2a2adb88b09da492700
- SHA1
  
  73230aa711fc6a5e729f80299ed74d8057175fd4
- SHA256
  
  6b2d46d25dced0e9332d707c594bd46a27a67682ca186002c326412f380bffff
- SHA512
  
  b36509f5807f19b0c15833a86206cea2a0dc8ad0fe67dfbe2f617f4b42aa4252e21b080d5631c320812b17cbd6704c7641bedbdf7ac650eea3d6787cb645c986
- SSDEEP
  
  3072:t3FyYmYn4OF93TeFw0v0wnJcefSXQHPTTAkvB5DdcgFM9o:t3FyYJn4qt63tnJfKXqPTX7D7FMm
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2