21a24649111bd3aa5e8021ba39753781ddd2f2c2f734f8a7ad1b01ca95d7cfba | Triage

Sharing

General

Target

e60f1f12a6615eace71523e072735570_NeikiAnalytics.exe
Size

64KB
Sample

240525-n4631aha54
MD5

e60f1f12a6615eace71523e072735570
SHA1

f4d4e767303bf8ca1a98420da3a555c9338d9ddf
SHA256

21a24649111bd3aa5e8021ba39753781ddd2f2c2f734f8a7ad1b01ca95d7cfba
SHA512

df230b85153068a934835aec23ea47885381c649a477bce1e89a34b7426e8498a728935e40c03a6a5ae652b237b3c9edc2eda8393bea474fe9b252cb3243c788
SSDEEP

1536:/bwi6tMfK3rSNTMDZKvr4My2T6vwJpK1eO6XKhbMbt2:/R6tMorACor4My224Jp5O6Xjt2

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e60f1f12a6615eace71523e072735570_NeikiAnalytics.exe
- Size
  
  64KB
- MD5
  
  e60f1f12a6615eace71523e072735570
- SHA1
  
  f4d4e767303bf8ca1a98420da3a555c9338d9ddf
- SHA256
  
  21a24649111bd3aa5e8021ba39753781ddd2f2c2f734f8a7ad1b01ca95d7cfba
- SHA512
  
  df230b85153068a934835aec23ea47885381c649a477bce1e89a34b7426e8498a728935e40c03a6a5ae652b237b3c9edc2eda8393bea474fe9b252cb3243c788
- SSDEEP
  
  1536:/bwi6tMfK3rSNTMDZKvr4My2T6vwJpK1eO6XKhbMbt2:/R6tMorACor4My224Jp5O6Xjt2
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2