7ea3d40b11b5cdc1cf578f6b93a8919c275b4f772986f673155fbcec60c034b4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f77a2dd94ee064921a8fa8089341fe0_NeikiAnalytics.exe
Size

422KB
Sample

240519-y37cgsfh97
MD5

2f77a2dd94ee064921a8fa8089341fe0
SHA1

77216b313e097c067ddd7f421e5b444e7a3a8c6d
SHA256

7ea3d40b11b5cdc1cf578f6b93a8919c275b4f772986f673155fbcec60c034b4
SHA512

9fb43e3c5f0b1187b665a50b08a47662f8ebef27e27fbf7dd6d39197e0727d0b9b6287c245aeebfe1c625bb00ae71aa4becef73e50c3f62b747079fa552b1362
SSDEEP

12288:4vgSYksdHFCsMmm4dOGcP/AdMmmpNs/VXMmmT:FrRdHFCBycHAiEdAT

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2f77a2dd94ee064921a8fa8089341fe0_NeikiAnalytics.exe
- Size
  
  422KB
- MD5
  
  2f77a2dd94ee064921a8fa8089341fe0
- SHA1
  
  77216b313e097c067ddd7f421e5b444e7a3a8c6d
- SHA256
  
  7ea3d40b11b5cdc1cf578f6b93a8919c275b4f772986f673155fbcec60c034b4
- SHA512
  
  9fb43e3c5f0b1187b665a50b08a47662f8ebef27e27fbf7dd6d39197e0727d0b9b6287c245aeebfe1c625bb00ae71aa4becef73e50c3f62b747079fa552b1362
- SSDEEP
  
  12288:4vgSYksdHFCsMmm4dOGcP/AdMmmpNs/VXMmmT:FrRdHFCBycHAiEdAT
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2