5f8f531ff7f4f9cc579d82dc18499cde0d6ef3b0d26b01faf62d9c6482b9e478 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

281f6c8501cd7f7fe2048bf0176aec10_NeikiAnalytics.exe
Size

443KB
Sample

240525-133emscc2v
MD5

281f6c8501cd7f7fe2048bf0176aec10
SHA1

2386eeeef82b529030c759af93de63440ccb861b
SHA256

5f8f531ff7f4f9cc579d82dc18499cde0d6ef3b0d26b01faf62d9c6482b9e478
SHA512

f60bb202191e441d94c3e26935b81fefdc972eb62f7f3602eb3621b7f4f52a68275ccb77b1a9407510fba4ede67a46f8ced46156b62d559d22a1aaf9deaac7af
SSDEEP

6144:OpyPwy7zeXmRL13n4GAI13n4GAvs0PEpNF0pNO021fv13n4GA3uKjwszeXmOEgHM:OpC1J1HJ1Uj+HiPj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  281f6c8501cd7f7fe2048bf0176aec10_NeikiAnalytics.exe
- Size
  
  443KB
- MD5
  
  281f6c8501cd7f7fe2048bf0176aec10
- SHA1
  
  2386eeeef82b529030c759af93de63440ccb861b
- SHA256
  
  5f8f531ff7f4f9cc579d82dc18499cde0d6ef3b0d26b01faf62d9c6482b9e478
- SHA512
  
  f60bb202191e441d94c3e26935b81fefdc972eb62f7f3602eb3621b7f4f52a68275ccb77b1a9407510fba4ede67a46f8ced46156b62d559d22a1aaf9deaac7af
- SSDEEP
  
  6144:OpyPwy7zeXmRL13n4GAI13n4GAvs0PEpNF0pNO021fv13n4GA3uKjwszeXmOEgHM:OpC1J1HJ1Uj+HiPj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2