48b70a94767db0d962a80a9646847a04b0f908b31a991175af10f03b14c367ef | Triage

Sharing

General

Target

bc12777b20d6bb0fac0a1e80fd2d9dd0_NeikiAnalytics.exe
Size

224KB
Sample

240525-vw8p7abg2y
MD5

bc12777b20d6bb0fac0a1e80fd2d9dd0
SHA1

926bd3d98679cf485a0645509b48a03905ee4b89
SHA256

48b70a94767db0d962a80a9646847a04b0f908b31a991175af10f03b14c367ef
SHA512

017855f40ea182b84781d4eaf49e96ddb4624fcbcab21138d726ef8a2c891a81e999bf85a67762b59d16927ead231ce4289bb842179d5f04f9121bf5b04b6ee6
SSDEEP

6144:izcJbEBmus5x4rQD85k/hQO+zrWnAdqjeOpKff:3Jol5rQg5W/+zrWAI5KH

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  bc12777b20d6bb0fac0a1e80fd2d9dd0_NeikiAnalytics.exe
- Size
  
  224KB
- MD5
  
  bc12777b20d6bb0fac0a1e80fd2d9dd0
- SHA1
  
  926bd3d98679cf485a0645509b48a03905ee4b89
- SHA256
  
  48b70a94767db0d962a80a9646847a04b0f908b31a991175af10f03b14c367ef
- SHA512
  
  017855f40ea182b84781d4eaf49e96ddb4624fcbcab21138d726ef8a2c891a81e999bf85a67762b59d16927ead231ce4289bb842179d5f04f9121bf5b04b6ee6
- SSDEEP
  
  6144:izcJbEBmus5x4rQD85k/hQO+zrWnAdqjeOpKff:3Jol5rQg5W/+zrWAI5KH
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2