5c9010927687d66daf079f6ae7e1381b4fd5f32178134f0a91f41e41d1b45248 | Triage

Sharing

General

Target

287752f74385801b1a815b6963d320f7_NeikiAnalytics.exe
Size

96KB
Sample

240520-k8wlaada48
MD5

287752f74385801b1a815b6963d320f7
SHA1

8a8948be7a72eebba27ca4b5f8c6885002f5c02e
SHA256

5c9010927687d66daf079f6ae7e1381b4fd5f32178134f0a91f41e41d1b45248
SHA512

4d07f9f016d12e2fbb91d68860fb067957884a86226dc461768ad39120486b0ee30b4c0787672643ee560c8b40c7513733e1067d056344474a95e847cdcdc249
SSDEEP

1536:7YYchgoi5Y37qRSMPFox/lqEQgY/03oG0cFyoNDYkpaAjWbjtKBvU:7khgoU3Scy/ZK/03oPcQoNMkpVwtCU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  287752f74385801b1a815b6963d320f7_NeikiAnalytics.exe
- Size
  
  96KB
- MD5
  
  287752f74385801b1a815b6963d320f7
- SHA1
  
  8a8948be7a72eebba27ca4b5f8c6885002f5c02e
- SHA256
  
  5c9010927687d66daf079f6ae7e1381b4fd5f32178134f0a91f41e41d1b45248
- SHA512
  
  4d07f9f016d12e2fbb91d68860fb067957884a86226dc461768ad39120486b0ee30b4c0787672643ee560c8b40c7513733e1067d056344474a95e847cdcdc249
- SSDEEP
  
  1536:7YYchgoi5Y37qRSMPFox/lqEQgY/03oG0cFyoNDYkpaAjWbjtKBvU:7khgoU3Scy/ZK/03oPcQoNMkpVwtCU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2