27f0dc3ce944d814428e40708ef3e9202f4147d8f038c1f8a2571b2088531b35 | Triage

Sharing

General

Target

768854e8f7179287e2785e42f227e570_NeikiAnalytics.exe
Size

465KB
Sample

240523-csrcmaac9s
MD5

768854e8f7179287e2785e42f227e570
SHA1

84cbc7b45735ed94f091f713d2754790f52c700c
SHA256

27f0dc3ce944d814428e40708ef3e9202f4147d8f038c1f8a2571b2088531b35
SHA512

1cff4e2c878d32d19e076b3c9548eb5e4d21ae9ac15e61ee8f01adef3b2a1f9b20d1e1c4fd8daabaa8365f1f27fa456cc5efdb9496735aa4bef8aa90892e4952
SSDEEP

6144:cqwUvUmqOILKpn/a5/VF5V4lKjIbvBhRJfzSf9x7N/I7b9M:cNaoO8S/WNLKlUmpRe94a

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  768854e8f7179287e2785e42f227e570_NeikiAnalytics.exe
- Size
  
  465KB
- MD5
  
  768854e8f7179287e2785e42f227e570
- SHA1
  
  84cbc7b45735ed94f091f713d2754790f52c700c
- SHA256
  
  27f0dc3ce944d814428e40708ef3e9202f4147d8f038c1f8a2571b2088531b35
- SHA512
  
  1cff4e2c878d32d19e076b3c9548eb5e4d21ae9ac15e61ee8f01adef3b2a1f9b20d1e1c4fd8daabaa8365f1f27fa456cc5efdb9496735aa4bef8aa90892e4952
- SSDEEP
  
  6144:cqwUvUmqOILKpn/a5/VF5V4lKjIbvBhRJfzSf9x7N/I7b9M:cNaoO8S/WNLKlUmpRe94a
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2