4779e4c1ea81c999601ae2918973090d57ea816ad2dae6aa8a0c4fe2172aed0f | Triage

Sharing

General

Target

c5c3202c8631fc9b1ff63371ca71f4d0_NeikiAnalytics.exe
Size

128KB
Sample

240525-jyy3zsbc94
MD5

c5c3202c8631fc9b1ff63371ca71f4d0
SHA1

cac59ced6c7c376396732dbe075aabc6b2956ca0
SHA256

4779e4c1ea81c999601ae2918973090d57ea816ad2dae6aa8a0c4fe2172aed0f
SHA512

91cadb509b86acf5565d8d332269f704f7e1b3d7968eab2b945f11993be6e563b7fdb7e0af6644fd56480fd30b533466273e48d9e03cd4ab774facc798e3b3c1
SSDEEP

3072:XcyeWzrqzY6iE8bVYRHqxEteA87DxSvITW/cbFGS9n:Myei/EGiRHqxEwAAhCw9n

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c5c3202c8631fc9b1ff63371ca71f4d0_NeikiAnalytics.exe
- Size
  
  128KB
- MD5
  
  c5c3202c8631fc9b1ff63371ca71f4d0
- SHA1
  
  cac59ced6c7c376396732dbe075aabc6b2956ca0
- SHA256
  
  4779e4c1ea81c999601ae2918973090d57ea816ad2dae6aa8a0c4fe2172aed0f
- SHA512
  
  91cadb509b86acf5565d8d332269f704f7e1b3d7968eab2b945f11993be6e563b7fdb7e0af6644fd56480fd30b533466273e48d9e03cd4ab774facc798e3b3c1
- SSDEEP
  
  3072:XcyeWzrqzY6iE8bVYRHqxEteA87DxSvITW/cbFGS9n:Myei/EGiRHqxEwAAhCw9n
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2