86d4168a0a5ba6bbf918553ec8d84343cb14e22a3c3058c3c6979ec05a069e38 | Triage

Sharing

General

Target

b803906f37305dbf1b08da860acce7f0_NeikiAnalytics.exe
Size

128KB
Sample

240525-vg4gxsbb6w
MD5

b803906f37305dbf1b08da860acce7f0
SHA1

86ee6f9f6dca5c6f879f468bdb2a401eebb50159
SHA256

86d4168a0a5ba6bbf918553ec8d84343cb14e22a3c3058c3c6979ec05a069e38
SHA512

546e9fc996dad8062163b59c41bf45b5a42bcb57c6f2f188c3e72f4f4b8830c4439aa41b5e4f7c842e87ec111f2856b1e5a6ecff5cc330f3c590ae9bf1f675a6
SSDEEP

3072:kMCA2dgiIeEszbAW7Fmeclj9pui6yYPaI7DehizrVtN:kbWiCszr77Ipui6yYPaIGc

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b803906f37305dbf1b08da860acce7f0_NeikiAnalytics.exe
- Size
  
  128KB
- MD5
  
  b803906f37305dbf1b08da860acce7f0
- SHA1
  
  86ee6f9f6dca5c6f879f468bdb2a401eebb50159
- SHA256
  
  86d4168a0a5ba6bbf918553ec8d84343cb14e22a3c3058c3c6979ec05a069e38
- SHA512
  
  546e9fc996dad8062163b59c41bf45b5a42bcb57c6f2f188c3e72f4f4b8830c4439aa41b5e4f7c842e87ec111f2856b1e5a6ecff5cc330f3c590ae9bf1f675a6
- SSDEEP
  
  3072:kMCA2dgiIeEszbAW7Fmeclj9pui6yYPaI7DehizrVtN:kbWiCszr77Ipui6yYPaIGc
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2