04610a2850380f8f9ce17061aa43d0c288f504a8247b20a10c1b7eab46f5788e | Triage

Sharing

General

Target

04610a2850380f8f9ce17061aa43d0c288f504a8247b20a10c1b7eab46f5788e_NeikiAnalytics
Size

93KB
Sample

240521-f2vyysah42
MD5

5b50c1bfbfe1e788c5a2acfd584e1350
SHA1

a433bf0b748f287df60cc190f9bb4fb3119dba41
SHA256

04610a2850380f8f9ce17061aa43d0c288f504a8247b20a10c1b7eab46f5788e
SHA512

dde9c63d6338a5302ebc9b52f7f38915aa0b72e27f7430e2baa15540bd33e48e118f553f0b59df8c1c276f5978d36f0235750f87c37804f5320bba103e2173d8
SSDEEP

1536:KF3ufZ97eA4auIA5bgFLHx+8/eLfcT7+UFEpOSpUZpa5HsaMiwihtIbbpkp:KF3uf37eA4KggFLR+OeLfc2U+pJpUZpm

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  04610a2850380f8f9ce17061aa43d0c288f504a8247b20a10c1b7eab46f5788e_NeikiAnalytics
- Size
  
  93KB
- MD5
  
  5b50c1bfbfe1e788c5a2acfd584e1350
- SHA1
  
  a433bf0b748f287df60cc190f9bb4fb3119dba41
- SHA256
  
  04610a2850380f8f9ce17061aa43d0c288f504a8247b20a10c1b7eab46f5788e
- SHA512
  
  dde9c63d6338a5302ebc9b52f7f38915aa0b72e27f7430e2baa15540bd33e48e118f553f0b59df8c1c276f5978d36f0235750f87c37804f5320bba103e2173d8
- SSDEEP
  
  1536:KF3ufZ97eA4auIA5bgFLHx+8/eLfcT7+UFEpOSpUZpa5HsaMiwihtIbbpkp:KF3uf37eA4KggFLR+OeLfc2U+pJpUZpm
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2