1534087f0f44a98fdd377c6d78d07385b4acac94964114ac3dce65ec0f5a28f1 | Triage

Sharing

General

Target

1534087f0f44a98fdd377c6d78d07385b4acac94964114ac3dce65ec0f5a28f1_NeikiAnalytics
Size

713KB
Sample

240521-hrg1fscb23
MD5

42c01f4b6f22f05dd07c0d1a10887e60
SHA1

af3ed3e2963c1969b3923e934aa1968949d4b2e9
SHA256

1534087f0f44a98fdd377c6d78d07385b4acac94964114ac3dce65ec0f5a28f1
SHA512

30b062818900b4d344003e4f32bf897505e7faabad331a7e3f114d14f4d261a0024ddf8fc95a823455fc463da712a5aba793378bd002c82b12756591100aeeda
SSDEEP

12288:O7xHpvyvc6IveDVqvQ6IvTPh2kkkkK4kXkkkkkkkkl888888888888888888nusj:O75q5hPPh2kkkkK4kXkkkkkkkkH

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1534087f0f44a98fdd377c6d78d07385b4acac94964114ac3dce65ec0f5a28f1_NeikiAnalytics
- Size
  
  713KB
- MD5
  
  42c01f4b6f22f05dd07c0d1a10887e60
- SHA1
  
  af3ed3e2963c1969b3923e934aa1968949d4b2e9
- SHA256
  
  1534087f0f44a98fdd377c6d78d07385b4acac94964114ac3dce65ec0f5a28f1
- SHA512
  
  30b062818900b4d344003e4f32bf897505e7faabad331a7e3f114d14f4d261a0024ddf8fc95a823455fc463da712a5aba793378bd002c82b12756591100aeeda
- SSDEEP
  
  12288:O7xHpvyvc6IveDVqvQ6IvTPh2kkkkK4kXkkkkkkkkl888888888888888888nusj:O75q5hPPh2kkkkK4kXkkkkkkkkH
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2