350da7bd9fe7a2df454b2275384d4e67e9405931b48bf2d7229a1b711f18a9e0 | Triage

Sharing

General

Target

411af4c49c15145ad05b5fd54ad1dae0_NeikiAnalytics.exe
Size

88KB
Sample

240526-xl9kvahb55
MD5

411af4c49c15145ad05b5fd54ad1dae0
SHA1

9355b9bbe2095fe1b831287607197311b178160e
SHA256

350da7bd9fe7a2df454b2275384d4e67e9405931b48bf2d7229a1b711f18a9e0
SHA512

0d8476a98be4f9ab0fa10c5dc51cb3c9ed55e8ef5571e41b61f2ae2ad21cf341afc16e4ff6a3c1f658e9c7eaef8fb5d2a098a87e1474f38fb5ff4bdfe4d2c81f
SSDEEP

1536:DEf8IfKUQ494S1fFYMozPWOVd3TJSfYvDtAvu2fHdWnouy8L:DI5VG3TJSfYrMu2f9moutL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  411af4c49c15145ad05b5fd54ad1dae0_NeikiAnalytics.exe
- Size
  
  88KB
- MD5
  
  411af4c49c15145ad05b5fd54ad1dae0
- SHA1
  
  9355b9bbe2095fe1b831287607197311b178160e
- SHA256
  
  350da7bd9fe7a2df454b2275384d4e67e9405931b48bf2d7229a1b711f18a9e0
- SHA512
  
  0d8476a98be4f9ab0fa10c5dc51cb3c9ed55e8ef5571e41b61f2ae2ad21cf341afc16e4ff6a3c1f658e9c7eaef8fb5d2a098a87e1474f38fb5ff4bdfe4d2c81f
- SSDEEP
  
  1536:DEf8IfKUQ494S1fFYMozPWOVd3TJSfYvDtAvu2fHdWnouy8L:DI5VG3TJSfYrMu2f9moutL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2