70a7b29a123659e5e3f243752a56ef00d41ed9ec11f63514141ccb9434b7d1d5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

32ef0c4a1b717ce5fb35e1494692fd30_NeikiAnalytics.exe
Size

464KB
Sample

240525-276hjaea8s
MD5

32ef0c4a1b717ce5fb35e1494692fd30
SHA1

40083dfb4254059179115f55ac26532ba275d201
SHA256

70a7b29a123659e5e3f243752a56ef00d41ed9ec11f63514141ccb9434b7d1d5
SHA512

735b0b7373f695774b486f5de36df2fbad481085a853eb60df0e19ca5f6f790c6ebd0d49b2c8293b5adf02043e79eebbbda93142bd0ecfc8a95e42d0c7787145
SSDEEP

6144:B4kA50KMlOrjwEOIIIPCn4EOIuIPJEOOcHTETKEOIIIPC:BLAJMlOrUEVI2C4EVu2JEVcBEVI2C

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  32ef0c4a1b717ce5fb35e1494692fd30_NeikiAnalytics.exe
- Size
  
  464KB
- MD5
  
  32ef0c4a1b717ce5fb35e1494692fd30
- SHA1
  
  40083dfb4254059179115f55ac26532ba275d201
- SHA256
  
  70a7b29a123659e5e3f243752a56ef00d41ed9ec11f63514141ccb9434b7d1d5
- SHA512
  
  735b0b7373f695774b486f5de36df2fbad481085a853eb60df0e19ca5f6f790c6ebd0d49b2c8293b5adf02043e79eebbbda93142bd0ecfc8a95e42d0c7787145
- SSDEEP
  
  6144:B4kA50KMlOrjwEOIIIPCn4EOIuIPJEOOcHTETKEOIIIPC:BLAJMlOrUEVI2C4EVu2JEVcBEVI2C
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2