d7cc63b9a3b2815c44159e3251c9b006ea633b7401bb8d1e90804c15c2e878ed | Triage

Sharing

General

Target

ac5541fc66b186b44d3693cc29f84e20_NeikiAnalytics.exe
Size

128KB
Sample

240520-e3l7rscc6v
MD5

ac5541fc66b186b44d3693cc29f84e20
SHA1

f22ecdcc705ebae1c309d50837bb1c2e53c384e0
SHA256

d7cc63b9a3b2815c44159e3251c9b006ea633b7401bb8d1e90804c15c2e878ed
SHA512

511397d032ef09306d43d6333774ff3e948a654645bbca12ee5582da4644c7ea7af54ca293329f3fa0b2472b7f1d5fb7edf1576f3793ee58c72d383e15dabd78
SSDEEP

3072:ZJkWkrJNYVX9uTToXxsPVIeplj9pui6yYPaI7DehizrVtN:Z2WCgVX7xstZpui6yYPaIGc

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ac5541fc66b186b44d3693cc29f84e20_NeikiAnalytics.exe
- Size
  
  128KB
- MD5
  
  ac5541fc66b186b44d3693cc29f84e20
- SHA1
  
  f22ecdcc705ebae1c309d50837bb1c2e53c384e0
- SHA256
  
  d7cc63b9a3b2815c44159e3251c9b006ea633b7401bb8d1e90804c15c2e878ed
- SHA512
  
  511397d032ef09306d43d6333774ff3e948a654645bbca12ee5582da4644c7ea7af54ca293329f3fa0b2472b7f1d5fb7edf1576f3793ee58c72d383e15dabd78
- SSDEEP
  
  3072:ZJkWkrJNYVX9uTToXxsPVIeplj9pui6yYPaI7DehizrVtN:Z2WCgVX7xstZpui6yYPaIGc
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2