31e48e45e25409feea92758892b7d3a331efc71ea98ec2249fb28f76ccebbff3 | Triage

Sharing

General

Target

5af5c7f4e1f144f692dbb69580e26d10_NeikiAnalytics.exe
Size

297KB
Sample

240526-pe82qscc48
MD5

5af5c7f4e1f144f692dbb69580e26d10
SHA1

ac88c0d9e90f0cdbbd8f40efc02c3c1308678b5f
SHA256

31e48e45e25409feea92758892b7d3a331efc71ea98ec2249fb28f76ccebbff3
SHA512

32db85c0703e5bb98807a94d985edd1a8c07ee721602a5f71ee967927e92ef56a5589a90d6b1b843a4f4c26406647d56b09984cc9f8d7eeabb5f2358dc7688a7
SSDEEP

6144:OsUTxSfmskOe7sCN1iOYhElV4ytBxuAZXa:OsxfnzeIXhElHuAxa

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  5af5c7f4e1f144f692dbb69580e26d10_NeikiAnalytics.exe
- Size
  
  297KB
- MD5
  
  5af5c7f4e1f144f692dbb69580e26d10
- SHA1
  
  ac88c0d9e90f0cdbbd8f40efc02c3c1308678b5f
- SHA256
  
  31e48e45e25409feea92758892b7d3a331efc71ea98ec2249fb28f76ccebbff3
- SHA512
  
  32db85c0703e5bb98807a94d985edd1a8c07ee721602a5f71ee967927e92ef56a5589a90d6b1b843a4f4c26406647d56b09984cc9f8d7eeabb5f2358dc7688a7
- SSDEEP
  
  6144:OsUTxSfmskOe7sCN1iOYhElV4ytBxuAZXa:OsxfnzeIXhElHuAxa
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2