5a54dfc11747b8d0261d452f284d3f1e4de00c4e4e583f34ff53d92f36fba867 | Triage

Sharing

General

Target

5a54dfc11747b8d0261d452f284d3f1e4de00c4e4e583f34ff53d92f36fba867_NeikiAnalytics
Size

264KB
Sample

240521-q8n44agd51
MD5

dfaaea70735d5184e303501b9953cf00
SHA1

a944c3b573320c4f07bfab7d5338efacb26fc2d0
SHA256

5a54dfc11747b8d0261d452f284d3f1e4de00c4e4e583f34ff53d92f36fba867
SHA512

ad507d2b85f6bc6fbb40e9c0ddbcdaf363b09b1495c775bf4b6334eb8e0fba79809910f1da5e43df6fc503001d4bd00d965420f17ffaa738c69a527d85747d9c
SSDEEP

6144:5tLS6mqPpui6yYPaIGckByLLgNHVXW9fVLpui6yYPaIGckv:5tO6mQpV6yYPayLLgNRYf1pV6yYPo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5a54dfc11747b8d0261d452f284d3f1e4de00c4e4e583f34ff53d92f36fba867_NeikiAnalytics
- Size
  
  264KB
- MD5
  
  dfaaea70735d5184e303501b9953cf00
- SHA1
  
  a944c3b573320c4f07bfab7d5338efacb26fc2d0
- SHA256
  
  5a54dfc11747b8d0261d452f284d3f1e4de00c4e4e583f34ff53d92f36fba867
- SHA512
  
  ad507d2b85f6bc6fbb40e9c0ddbcdaf363b09b1495c775bf4b6334eb8e0fba79809910f1da5e43df6fc503001d4bd00d965420f17ffaa738c69a527d85747d9c
- SSDEEP
  
  6144:5tLS6mqPpui6yYPaIGckByLLgNHVXW9fVLpui6yYPaIGckv:5tO6mQpV6yYPayLLgNRYf1pV6yYPo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2