dc7d5ab254bf79c8f023d5f79ce45e77956d4cba5673e9a0f30b8d78cb4022e0 | Triage

Sharing

General

Target

5e5b008f27a8e59bd05776b835ac7400_NeikiAnalytics.exe
Size

5.8MB
Sample

240523-addrwaeb3s
MD5

5e5b008f27a8e59bd05776b835ac7400
SHA1

ecf3ff453792ed727a87fd532385fecac3c36cee
SHA256

dc7d5ab254bf79c8f023d5f79ce45e77956d4cba5673e9a0f30b8d78cb4022e0
SHA512

7ae71bbb37bfdce42f42e17481e2affd69d6453a640bc0530a11242f9df8777874dd8b851e51abf67cf80442cf78ae10653df11d83ad8acb449b3cff51d6b16c
SSDEEP

98304:aLo5QTQrSjGzwbEwxCMPJVWlNKK31yzX6kPmh3ue7FH0oRVoiwhSi2BEiOfcCbEQ:lkQujGjwxdBVxpHmj9nmhv2SiOfcCbFL

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5e5b008f27a8e59bd05776b835ac7400_NeikiAnalytics.exe
- Size
  
  5.8MB
- MD5
  
  5e5b008f27a8e59bd05776b835ac7400
- SHA1
  
  ecf3ff453792ed727a87fd532385fecac3c36cee
- SHA256
  
  dc7d5ab254bf79c8f023d5f79ce45e77956d4cba5673e9a0f30b8d78cb4022e0
- SHA512
  
  7ae71bbb37bfdce42f42e17481e2affd69d6453a640bc0530a11242f9df8777874dd8b851e51abf67cf80442cf78ae10653df11d83ad8acb449b3cff51d6b16c
- SSDEEP
  
  98304:aLo5QTQrSjGzwbEwxCMPJVWlNKK31yzX6kPmh3ue7FH0oRVoiwhSi2BEiOfcCbEQ:lkQujGjwxdBVxpHmj9nmhv2SiOfcCbFL
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2