f84556774c6c3618a1a69b7c3c355c6ebe78d355a632b9be83b3f5a94c831d35 | Triage

Sharing

General

Target

6ab50e5f8451662d3efa8891f33aa140_NeikiAnalytics.exe
Size

55KB
Sample

240523-bl52rsgc97
MD5

6ab50e5f8451662d3efa8891f33aa140
SHA1

bf59efdec668879b70b17c62ad4b68f26996e084
SHA256

f84556774c6c3618a1a69b7c3c355c6ebe78d355a632b9be83b3f5a94c831d35
SHA512

31bc71d43f6e677c9858c5f51dddd862f6e47ffd47dc5ec612a2e30b401ea6ec94c52859b3cc08e8e6705fdb54a532e71f732058956d7006ebd199a410cfdec4
SSDEEP

768:k7ZVJFrXtWJ+WDVhuqL2IsN7A05j64IgkQZHRozur/DPLfjWznr/D37PTHLfjXba:K/KDLuqL2IsN7fFIgkQDoy7zZS/2LB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  6ab50e5f8451662d3efa8891f33aa140_NeikiAnalytics.exe
- Size
  
  55KB
- MD5
  
  6ab50e5f8451662d3efa8891f33aa140
- SHA1
  
  bf59efdec668879b70b17c62ad4b68f26996e084
- SHA256
  
  f84556774c6c3618a1a69b7c3c355c6ebe78d355a632b9be83b3f5a94c831d35
- SHA512
  
  31bc71d43f6e677c9858c5f51dddd862f6e47ffd47dc5ec612a2e30b401ea6ec94c52859b3cc08e8e6705fdb54a532e71f732058956d7006ebd199a410cfdec4
- SSDEEP
  
  768:k7ZVJFrXtWJ+WDVhuqL2IsN7A05j64IgkQZHRozur/DPLfjWznr/D37PTHLfjXba:K/KDLuqL2IsN7fFIgkQDoy7zZS/2LB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2