36d30a3aa8d71df15d98ed81c10bbb92783fbbad2472f3d9a5ecf0eab7652e54 | Triage

Sharing

General

Target

36d30a3aa8d71df15d98ed81c10bbb92783fbbad2472f3d9a5ecf0eab7652e54_NeikiAnalytics
Size

34KB
Sample

240521-mk49maac9w
MD5

dd1c6e7fe1f77ded2bf3a357f3743e40
SHA1

32d8a996a286385a0c89940d2360f5b4d505b005
SHA256

36d30a3aa8d71df15d98ed81c10bbb92783fbbad2472f3d9a5ecf0eab7652e54
SHA512

bc0229dbcf8160a66f8be962e247a23a9fdc759b5b7b4105960e1509ca6c1ed3303b2a55e0d24be119ef9359573b26a87a6fc0e61ec3569eccb3e8df6250d952
SSDEEP

768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYg

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  36d30a3aa8d71df15d98ed81c10bbb92783fbbad2472f3d9a5ecf0eab7652e54_NeikiAnalytics
- Size
  
  34KB
- MD5
  
  dd1c6e7fe1f77ded2bf3a357f3743e40
- SHA1
  
  32d8a996a286385a0c89940d2360f5b4d505b005
- SHA256
  
  36d30a3aa8d71df15d98ed81c10bbb92783fbbad2472f3d9a5ecf0eab7652e54
- SHA512
  
  bc0229dbcf8160a66f8be962e247a23a9fdc759b5b7b4105960e1509ca6c1ed3303b2a55e0d24be119ef9359573b26a87a6fc0e61ec3569eccb3e8df6250d952
- SSDEEP
  
  768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYg
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2