6a99c72fc9f6a85aa9b12586c5f07e878dbd1b66e1bdd36f3b196026c5cae3b6 | Triage

Sharing

General

Target

546b6fea67122749ac8f310a287fde60_NeikiAnalytics.exe
Size

4.1MB
Sample

240522-26wlyacf63
MD5

546b6fea67122749ac8f310a287fde60
SHA1

43c5c9b53288ead9f11e34c8df9f9f1d0b26b3c9
SHA256

6a99c72fc9f6a85aa9b12586c5f07e878dbd1b66e1bdd36f3b196026c5cae3b6
SHA512

c79c2592ff748c02725d020b6a196b0de651198ef4902ad8bd5e9f09705b36df90e6b3164babab8be6d8c8ce73c87058fc93b9364d07ea37c4f5b9c14298aa55
SSDEEP

98304:+R0pI/IQlUoMPdmpSpv4ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdm45n9klRKN41v

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  546b6fea67122749ac8f310a287fde60_NeikiAnalytics.exe
- Size
  
  4.1MB
- MD5
  
  546b6fea67122749ac8f310a287fde60
- SHA1
  
  43c5c9b53288ead9f11e34c8df9f9f1d0b26b3c9
- SHA256
  
  6a99c72fc9f6a85aa9b12586c5f07e878dbd1b66e1bdd36f3b196026c5cae3b6
- SHA512
  
  c79c2592ff748c02725d020b6a196b0de651198ef4902ad8bd5e9f09705b36df90e6b3164babab8be6d8c8ce73c87058fc93b9364d07ea37c4f5b9c14298aa55
- SSDEEP
  
  98304:+R0pI/IQlUoMPdmpSpv4ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdm45n9klRKN41v
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2