578b4cf79e163615224b7174a3713107a71edceb6b71a5701589acc8ab80ab15 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

488850aa6e69e96f5cb93199dec89860_NeikiAnalytics.exe
Size

89KB
Sample

240519-15aseach53
MD5

488850aa6e69e96f5cb93199dec89860
SHA1

f0cad79d2bcb3c37f460ba6f6a6895320da2f6ba
SHA256

578b4cf79e163615224b7174a3713107a71edceb6b71a5701589acc8ab80ab15
SHA512

20eaa8845114f519241484032b04cb9cda5f1b222483599653aed6ac7f3dd0fa0ce68428108547e93cf9d2036cce23b549a3cde21247c799446cb240339d48d4
SSDEEP

1536:01IRJVt33bRR2EW8kNuoHdT4X/6g+EalHTB4U8HVJXvN6TIcylExkg8F:012ZbRREpHdTChvalHl0HVJXvNAIcyl/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  488850aa6e69e96f5cb93199dec89860_NeikiAnalytics.exe
- Size
  
  89KB
- MD5
  
  488850aa6e69e96f5cb93199dec89860
- SHA1
  
  f0cad79d2bcb3c37f460ba6f6a6895320da2f6ba
- SHA256
  
  578b4cf79e163615224b7174a3713107a71edceb6b71a5701589acc8ab80ab15
- SHA512
  
  20eaa8845114f519241484032b04cb9cda5f1b222483599653aed6ac7f3dd0fa0ce68428108547e93cf9d2036cce23b549a3cde21247c799446cb240339d48d4
- SSDEEP
  
  1536:01IRJVt33bRR2EW8kNuoHdT4X/6g+EalHTB4U8HVJXvN6TIcylExkg8F:012ZbRREpHdTChvalHl0HVJXvNAIcyl/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2