dce9644852ece6a904eb55ea0cf36c87cbe2a9c085ffd7adde4dacef05ab9f09 | Triage

Sharing

General

Target

0ce4697b70c169aee7ba6f58b5acf900_NeikiAnalytics.exe
Size

115KB
Sample

240521-zm75hsab5y
MD5

0ce4697b70c169aee7ba6f58b5acf900
SHA1

8ec66112a006764812dcd0ad816962bf9a7c2ffa
SHA256

dce9644852ece6a904eb55ea0cf36c87cbe2a9c085ffd7adde4dacef05ab9f09
SHA512

e9a395738ff98731cc32075b9f3aa6f74dcbc387acb66a49c8e92abfd1e499911673cd91a5f3db131e4c602adde92e05ce5c7a8af2f947a50716e33746b66032
SSDEEP

1536:Hlqls0GgUyj5JxdA4Oj3W2Fsdq4FiG+sdguxnSngBNpy5G0Aox9cJNWIfoEb:HQC/yj5JO3MniG+Hu5y5Lxxu6IfoC

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  0ce4697b70c169aee7ba6f58b5acf900_NeikiAnalytics.exe
- Size
  
  115KB
- MD5
  
  0ce4697b70c169aee7ba6f58b5acf900
- SHA1
  
  8ec66112a006764812dcd0ad816962bf9a7c2ffa
- SHA256
  
  dce9644852ece6a904eb55ea0cf36c87cbe2a9c085ffd7adde4dacef05ab9f09
- SHA512
  
  e9a395738ff98731cc32075b9f3aa6f74dcbc387acb66a49c8e92abfd1e499911673cd91a5f3db131e4c602adde92e05ce5c7a8af2f947a50716e33746b66032
- SSDEEP
  
  1536:Hlqls0GgUyj5JxdA4Oj3W2Fsdq4FiG+sdguxnSngBNpy5G0Aox9cJNWIfoEb:HQC/yj5JO3MniG+Hu5y5Lxxu6IfoC
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2