5454fd3316f32d0a9943c6c3fa8252c48182564657004b9d3780a7b99d55b9d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0dc9c5e9239310a626823745d2435950_NeikiAnalytics.exe
Size

92KB
Sample

240525-xr3dqafb59
MD5

0dc9c5e9239310a626823745d2435950
SHA1

d36176f8c3b56d2c7e5dcb0d68da066bafba8d88
SHA256

5454fd3316f32d0a9943c6c3fa8252c48182564657004b9d3780a7b99d55b9d2
SHA512

f50c8b99cb0f06b991fd74877ae49ad9c0ea9e265c56e9ed8c1fac5a793fa3520acdc7434bfaee0c7c2c6c4ea391a1b53c580a683ef65b481b31c9c334a1c6da
SSDEEP

1536:Spdw/MIlbT5vUOP4aVUwW5qF2paz/QAjXq+66DFUABABOVLefE3:H/plfV94pwWYF2pYoAj6+JB8M3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0dc9c5e9239310a626823745d2435950_NeikiAnalytics.exe
- Size
  
  92KB
- MD5
  
  0dc9c5e9239310a626823745d2435950
- SHA1
  
  d36176f8c3b56d2c7e5dcb0d68da066bafba8d88
- SHA256
  
  5454fd3316f32d0a9943c6c3fa8252c48182564657004b9d3780a7b99d55b9d2
- SHA512
  
  f50c8b99cb0f06b991fd74877ae49ad9c0ea9e265c56e9ed8c1fac5a793fa3520acdc7434bfaee0c7c2c6c4ea391a1b53c580a683ef65b481b31c9c334a1c6da
- SSDEEP
  
  1536:Spdw/MIlbT5vUOP4aVUwW5qF2paz/QAjXq+66DFUABABOVLefE3:H/plfV94pwWYF2pYoAj6+JB8M3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2