1444e4847010bd54c6d62e97a96323e21d4de117849685e2ce3ec9921c299ade | Triage

Sharing

General

Target

1444e4847010bd54c6d62e97a96323e21d4de117849685e2ce3ec9921c299ade_NeikiAnalytics
Size

81KB
Sample

240521-hnc74abh75
MD5

45f07c03dbb8439c1c216b6d59b8ca20
SHA1

e8b922bcb0091285c05710bda9c381e1d8ca8f68
SHA256

1444e4847010bd54c6d62e97a96323e21d4de117849685e2ce3ec9921c299ade
SHA512

29ae6616fb436276b5b5281c76222ae2f5503c980517b6cb0be7c2a9da08dd570f78bd1aed68aa01c9bdd2e19c61294d86adc436d023133913b968c2efe0f695
SSDEEP

1536:nEYQt/dOB5jAItDwGGBqcTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTxTTX9ToTTT/:EYQt/dY5UIFGnTTTTTTTTTTTTTTTTTTa

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1444e4847010bd54c6d62e97a96323e21d4de117849685e2ce3ec9921c299ade_NeikiAnalytics
- Size
  
  81KB
- MD5
  
  45f07c03dbb8439c1c216b6d59b8ca20
- SHA1
  
  e8b922bcb0091285c05710bda9c381e1d8ca8f68
- SHA256
  
  1444e4847010bd54c6d62e97a96323e21d4de117849685e2ce3ec9921c299ade
- SHA512
  
  29ae6616fb436276b5b5281c76222ae2f5503c980517b6cb0be7c2a9da08dd570f78bd1aed68aa01c9bdd2e19c61294d86adc436d023133913b968c2efe0f695
- SSDEEP
  
  1536:nEYQt/dOB5jAItDwGGBqcTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTxTTX9ToTTT/:EYQt/dY5UIFGnTTTTTTTTTTTTTTTTTTa
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2