06da8531a8c59edd1fa0049c547aafb132b32b9a9124d4f06d6c74cc22925603 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06da8531a8c59edd1fa0049c547aafb132b32b9a9124d4f06d6c74cc22925603_NeikiAnalytics
Size

128KB
Sample

240521-ga3p6adc33
MD5

322e658bf96c6866f60c486811a53790
SHA1

02c0c0d2417f56ddd07d959cf5cfe1d54b3f5e26
SHA256

06da8531a8c59edd1fa0049c547aafb132b32b9a9124d4f06d6c74cc22925603
SHA512

ac0a4716edf872ca7815c36cbfb212b73f28a0babe8e2af1b759463dfb3aa8234f3a8d1b610b02d00d8978ee73c5bce09013187638321194cfb9f8766c146929
SSDEEP

1536:wgPOu6d5aU4Y+EI88whcgnxpYU2nouy8O6Nuf51TQmQM22OwU:KuEU/Y7I8bbnDYUGoutkTy2o

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  06da8531a8c59edd1fa0049c547aafb132b32b9a9124d4f06d6c74cc22925603_NeikiAnalytics
- Size
  
  128KB
- MD5
  
  322e658bf96c6866f60c486811a53790
- SHA1
  
  02c0c0d2417f56ddd07d959cf5cfe1d54b3f5e26
- SHA256
  
  06da8531a8c59edd1fa0049c547aafb132b32b9a9124d4f06d6c74cc22925603
- SHA512
  
  ac0a4716edf872ca7815c36cbfb212b73f28a0babe8e2af1b759463dfb3aa8234f3a8d1b610b02d00d8978ee73c5bce09013187638321194cfb9f8766c146929
- SSDEEP
  
  1536:wgPOu6d5aU4Y+EI88whcgnxpYU2nouy8O6Nuf51TQmQM22OwU:KuEU/Y7I8bbnDYUGoutkTy2o
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2