536996df9f78075ab40018df24545a3a1245097c9749b28a52fdb5575416d0d0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f514e89b1002610aa41ee803df33220_NeikiAnalytics.exe
Size

79KB
Sample

240525-2vrhvade3s
MD5

2f514e89b1002610aa41ee803df33220
SHA1

bc147ae032af436619df15ca34bfa3bb79d14e7e
SHA256

536996df9f78075ab40018df24545a3a1245097c9749b28a52fdb5575416d0d0
SHA512

5f543582b08fac5c444e65dff3e35b84639c58cde4576534e3c527dacf83edf8074c52a57f74be45eaf086112e8e2032a5dd3d543e87928de1ba99ba2f4871e9
SSDEEP

1536:/gGx681G7LB/UkOJUEDiFkSIgiItKq9v6DK:/V1GRsjUEDixtBtKq9vV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2f514e89b1002610aa41ee803df33220_NeikiAnalytics.exe
- Size
  
  79KB
- MD5
  
  2f514e89b1002610aa41ee803df33220
- SHA1
  
  bc147ae032af436619df15ca34bfa3bb79d14e7e
- SHA256
  
  536996df9f78075ab40018df24545a3a1245097c9749b28a52fdb5575416d0d0
- SHA512
  
  5f543582b08fac5c444e65dff3e35b84639c58cde4576534e3c527dacf83edf8074c52a57f74be45eaf086112e8e2032a5dd3d543e87928de1ba99ba2f4871e9
- SSDEEP
  
  1536:/gGx681G7LB/UkOJUEDiFkSIgiItKq9v6DK:/V1GRsjUEDixtBtKq9vV
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2