e2db3cc3947fe36196e3191cef51fee9ba314c4421b60038dd66a11ded3c1cd8 | Triage

Sharing

General

Target

f3aef32b7582079f69d5b28518438250_NeikiAnalytics.exe
Size

67KB
Sample

240520-ngyhcahh5x
MD5

f3aef32b7582079f69d5b28518438250
SHA1

7d9ca28cfafe79659ab6ef98be5c6659b753745f
SHA256

e2db3cc3947fe36196e3191cef51fee9ba314c4421b60038dd66a11ded3c1cd8
SHA512

00a430204dc49cbed3c9ee1271a25054564918f97e847831e1634fba8b5db5f2839857213628d4f42fdd2b64d79fd5f4de11772a9773212cf08897144571e747
SSDEEP

1536:CIhVzaolSWMpcq7JcYVzlwNrRExBh0yVN/5UYs/J4YLccuA1cgCe8uC:lhooEKq7JcYVzlwNrRExBh0yqYs/3LcF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f3aef32b7582079f69d5b28518438250_NeikiAnalytics.exe
- Size
  
  67KB
- MD5
  
  f3aef32b7582079f69d5b28518438250
- SHA1
  
  7d9ca28cfafe79659ab6ef98be5c6659b753745f
- SHA256
  
  e2db3cc3947fe36196e3191cef51fee9ba314c4421b60038dd66a11ded3c1cd8
- SHA512
  
  00a430204dc49cbed3c9ee1271a25054564918f97e847831e1634fba8b5db5f2839857213628d4f42fdd2b64d79fd5f4de11772a9773212cf08897144571e747
- SSDEEP
  
  1536:CIhVzaolSWMpcq7JcYVzlwNrRExBh0yVN/5UYs/J4YLccuA1cgCe8uC:lhooEKq7JcYVzlwNrRExBh0yqYs/3LcF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2