8f4983018737da1a1b582889532bf4a8ec07fec75443953fd95f485cf575241b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e9acd287aebae8a6f21b5dd2e6901cf0_NeikiAnalytics.exe
Size

559KB
Sample

240520-mk56xsfe42
MD5

e9acd287aebae8a6f21b5dd2e6901cf0
SHA1

aedf65afe23cce8fd1909fabf16b9c2bdfebe29b
SHA256

8f4983018737da1a1b582889532bf4a8ec07fec75443953fd95f485cf575241b
SHA512

0f12650ba52684f8e4cc632dd295c16b617a6b2f9aed4d3b1ae0be39b81a9f5a5831bf00364b46c3e35f521f131955ca1945b07b6d8fcb83cb3ece5bac9380f7
SSDEEP

6144:t7PuLLsNz5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWD2/wH5CPXbo92ynnZlVr4:NPwYBFHRFbe7QFHRFbe73

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e9acd287aebae8a6f21b5dd2e6901cf0_NeikiAnalytics.exe
- Size
  
  559KB
- MD5
  
  e9acd287aebae8a6f21b5dd2e6901cf0
- SHA1
  
  aedf65afe23cce8fd1909fabf16b9c2bdfebe29b
- SHA256
  
  8f4983018737da1a1b582889532bf4a8ec07fec75443953fd95f485cf575241b
- SHA512
  
  0f12650ba52684f8e4cc632dd295c16b617a6b2f9aed4d3b1ae0be39b81a9f5a5831bf00364b46c3e35f521f131955ca1945b07b6d8fcb83cb3ece5bac9380f7
- SSDEEP
  
  6144:t7PuLLsNz5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWD2/wH5CPXbo92ynnZlVr4:NPwYBFHRFbe7QFHRFbe73
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2