736d03de38ac1d1ec222b696ed7ff41fc6c3f3cfa64320b3d0bf13c315bdd2d8 | Triage

Sharing

General

Target

3a1fa47577a10cb8e811c149a86c9620_NeikiAnalytics.exe
Size

704KB
Sample

240525-s68f3ahe2t
MD5

3a1fa47577a10cb8e811c149a86c9620
SHA1

d7070fbbcec12a03a947d60f7459fa262d1aa92b
SHA256

736d03de38ac1d1ec222b696ed7ff41fc6c3f3cfa64320b3d0bf13c315bdd2d8
SHA512

5c7a752e429abe7d9f76dc6dddf9382a21dee7c2af76a83b613aad746807a765ccde448b184cedeee013d56c1b1b364a9a102707c3e81ca6331279c1b69441d0
SSDEEP

12288:ZvnG/ZPpOQT1rQg5W/+zrWAI5KFum/+zrWAIAqWim/+zrWAI5KFHTP7rXFr/+zr2:BCZPpOQT1rQg5Wm0BmmvFimm0MTP7hmm

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3a1fa47577a10cb8e811c149a86c9620_NeikiAnalytics.exe
- Size
  
  704KB
- MD5
  
  3a1fa47577a10cb8e811c149a86c9620
- SHA1
  
  d7070fbbcec12a03a947d60f7459fa262d1aa92b
- SHA256
  
  736d03de38ac1d1ec222b696ed7ff41fc6c3f3cfa64320b3d0bf13c315bdd2d8
- SHA512
  
  5c7a752e429abe7d9f76dc6dddf9382a21dee7c2af76a83b613aad746807a765ccde448b184cedeee013d56c1b1b364a9a102707c3e81ca6331279c1b69441d0
- SSDEEP
  
  12288:ZvnG/ZPpOQT1rQg5W/+zrWAI5KFum/+zrWAIAqWim/+zrWAI5KFHTP7rXFr/+zr2:BCZPpOQT1rQg5Wm0BmmvFimm0MTP7hmm
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2