08c3b88bf8cb18146c01973c6af078d06d936981e0e4e606faa54208a84a93aa | Triage

Sharing

General

Target

2f0bc5e68a2d3e54d6674eee9a216860_NeikiAnalytics.exe
Size

198KB
Sample

240519-y23ynsfh48
MD5

2f0bc5e68a2d3e54d6674eee9a216860
SHA1

dc1a145420759f4b94840dcab2009dd9ee3db5e7
SHA256

08c3b88bf8cb18146c01973c6af078d06d936981e0e4e606faa54208a84a93aa
SHA512

f62d7b2e87b713ac200641abffefded716de3ac600d6ae182643a2a1d0eab888de808075af4a10608ccb661f5c28858d64b15705437b1e7de64bc3a16e88d985
SSDEEP

3072:2d6H0A9RkrelSv2liC4Sp+7H7wWkqrifbdB7dYk1Bx8DpsV6OzrCIwfE:2sUceilS8iCBOHhkym/89bKws

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2f0bc5e68a2d3e54d6674eee9a216860_NeikiAnalytics.exe
- Size
  
  198KB
- MD5
  
  2f0bc5e68a2d3e54d6674eee9a216860
- SHA1
  
  dc1a145420759f4b94840dcab2009dd9ee3db5e7
- SHA256
  
  08c3b88bf8cb18146c01973c6af078d06d936981e0e4e606faa54208a84a93aa
- SHA512
  
  f62d7b2e87b713ac200641abffefded716de3ac600d6ae182643a2a1d0eab888de808075af4a10608ccb661f5c28858d64b15705437b1e7de64bc3a16e88d985
- SSDEEP
  
  3072:2d6H0A9RkrelSv2liC4Sp+7H7wWkqrifbdB7dYk1Bx8DpsV6OzrCIwfE:2sUceilS8iCBOHhkym/89bKws
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2