511ddb2421698d9864092e10923519e856c74768a62f29f4e3a0a084e6144b6d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44ed5b5baf590fc84f0a494545fd3560_NeikiAnalytics.exe
Size

56KB
Sample

240526-bfcg9shg46
MD5

44ed5b5baf590fc84f0a494545fd3560
SHA1

25b24dc98b11e0351de26ef9c41a72dbb5b191d3
SHA256

511ddb2421698d9864092e10923519e856c74768a62f29f4e3a0a084e6144b6d
SHA512

18edd7f8466c234ddfbe214b3927e09749beb190226ed2d4c117500bbf75c56d2ca5a54e8ef87c24cf391b64db6ebf70595434b67c6dec5e977106f10598ccfc
SSDEEP

1536:+eEW1pvqQiO62SOz80o2gXvcpGoe6+QU:JE8oZO6sLt7RU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  44ed5b5baf590fc84f0a494545fd3560_NeikiAnalytics.exe
- Size
  
  56KB
- MD5
  
  44ed5b5baf590fc84f0a494545fd3560
- SHA1
  
  25b24dc98b11e0351de26ef9c41a72dbb5b191d3
- SHA256
  
  511ddb2421698d9864092e10923519e856c74768a62f29f4e3a0a084e6144b6d
- SHA512
  
  18edd7f8466c234ddfbe214b3927e09749beb190226ed2d4c117500bbf75c56d2ca5a54e8ef87c24cf391b64db6ebf70595434b67c6dec5e977106f10598ccfc
- SSDEEP
  
  1536:+eEW1pvqQiO62SOz80o2gXvcpGoe6+QU:JE8oZO6sLt7RU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2