722aed418ba8a57de1d9cdb8b2c5bdffba25abbc0543e7b6d6240aa847173164 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ab0a8237c698735b5789cd93f33208d0_NeikiAnalytics.exe
Size

395KB
Sample

240523-wdyypsba48
MD5

ab0a8237c698735b5789cd93f33208d0
SHA1

da5de8698bd7bc194228cdfbccaf2354f21de5a5
SHA256

722aed418ba8a57de1d9cdb8b2c5bdffba25abbc0543e7b6d6240aa847173164
SHA512

747b3ed107ccbf06c9bb1888e1c5ab6827ea312457ec8cc9e4abde57930747f53e6796eef5b1069e84bf84c93782d4aad16a6a8ba6920f94630aac9f9e21d2f8
SSDEEP

6144:4jlYKRF/LReWAsUylPXAxi5mwN4mCkhPh/h4Gqo+WDheLA:4jauDReWr0i5mwN4mCkhPhMEwLA

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  ab0a8237c698735b5789cd93f33208d0_NeikiAnalytics.exe
- Size
  
  395KB
- MD5
  
  ab0a8237c698735b5789cd93f33208d0
- SHA1
  
  da5de8698bd7bc194228cdfbccaf2354f21de5a5
- SHA256
  
  722aed418ba8a57de1d9cdb8b2c5bdffba25abbc0543e7b6d6240aa847173164
- SHA512
  
  747b3ed107ccbf06c9bb1888e1c5ab6827ea312457ec8cc9e4abde57930747f53e6796eef5b1069e84bf84c93782d4aad16a6a8ba6920f94630aac9f9e21d2f8
- SSDEEP
  
  6144:4jlYKRF/LReWAsUylPXAxi5mwN4mCkhPh/h4Gqo+WDheLA:4jauDReWr0i5mwN4mCkhPhMEwLA
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2