6a61b31bd3f8cd1a1852182c7bfcda8d4b00af583ff0cc233dd6ba4ab7902e26 | Triage

Sharing

General

Target

ba15f23fc026c35e9e5d37f2c99eeaa0_NeikiAnalytics.exe
Size

89KB
Sample

240520-f9kg7adg86
MD5

ba15f23fc026c35e9e5d37f2c99eeaa0
SHA1

ca931e5c1280c82746a0fd1a6619e158cc988ced
SHA256

6a61b31bd3f8cd1a1852182c7bfcda8d4b00af583ff0cc233dd6ba4ab7902e26
SHA512

f6075ecfbb055465287628cd84e551a277bea4e18043d2f9930e8c793a77889e1c19d63ea879a15a4050743eb3c4e18278a25015091285ea4f9ef117d364a83e
SSDEEP

1536:kczy9eOVp19rsZTKGuF7gA3zsDxuzg4LgYbmsCIK282c8CPGCECa9bC7e3iaqWpB:pa1xstKG67gAG4LgYbmhD28Qxnd9GMHD

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ba15f23fc026c35e9e5d37f2c99eeaa0_NeikiAnalytics.exe
- Size
  
  89KB
- MD5
  
  ba15f23fc026c35e9e5d37f2c99eeaa0
- SHA1
  
  ca931e5c1280c82746a0fd1a6619e158cc988ced
- SHA256
  
  6a61b31bd3f8cd1a1852182c7bfcda8d4b00af583ff0cc233dd6ba4ab7902e26
- SHA512
  
  f6075ecfbb055465287628cd84e551a277bea4e18043d2f9930e8c793a77889e1c19d63ea879a15a4050743eb3c4e18278a25015091285ea4f9ef117d364a83e
- SSDEEP
  
  1536:kczy9eOVp19rsZTKGuF7gA3zsDxuzg4LgYbmsCIK282c8CPGCECa9bC7e3iaqWpB:pa1xstKG67gAG4LgYbmhD28Qxnd9GMHD
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2