2daf6e14224f648326b5298a6ff3f98893e75e9a6743acea250f30ca53c7fa5d | Triage

Sharing

General

Target

2daf6e14224f648326b5298a6ff3f98893e75e9a6743acea250f30ca53c7fa5d_NeikiAnalytics
Size

93KB
Sample

240521-lljhwagf49
MD5

bfb1e59561521ed261b7b68d4ba72020
SHA1

c34a50126c9a2fd6aa9aa54d1f96f43fa12fb3b4
SHA256

2daf6e14224f648326b5298a6ff3f98893e75e9a6743acea250f30ca53c7fa5d
SHA512

b515c13fa1e9b3d36ed0e8a664a69613f4e82a637ce920201e783d676ed536c7cb1567298e109dfdd427f06510256f020987e7273b337683b4b8c6ba23720c1b
SSDEEP

1536:2XtvvL0GO3FN3kYp4hQ7uGgVKGbmhezrEPEUa3PkOAGA8d5yfsaMiwihtIbbpkp:2R834Yp3uGgVKWfz3PnKm5idMiwaIbb+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2daf6e14224f648326b5298a6ff3f98893e75e9a6743acea250f30ca53c7fa5d_NeikiAnalytics
- Size
  
  93KB
- MD5
  
  bfb1e59561521ed261b7b68d4ba72020
- SHA1
  
  c34a50126c9a2fd6aa9aa54d1f96f43fa12fb3b4
- SHA256
  
  2daf6e14224f648326b5298a6ff3f98893e75e9a6743acea250f30ca53c7fa5d
- SHA512
  
  b515c13fa1e9b3d36ed0e8a664a69613f4e82a637ce920201e783d676ed536c7cb1567298e109dfdd427f06510256f020987e7273b337683b4b8c6ba23720c1b
- SSDEEP
  
  1536:2XtvvL0GO3FN3kYp4hQ7uGgVKGbmhezrEPEUa3PkOAGA8d5yfsaMiwihtIbbpkp:2R834Yp3uGgVKWfz3PnKm5idMiwaIbb+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2