41d6584b47148deda14ffbc7e0d176fd3e8fe2cbfadffcc8b16e5958b6a48de1 | Triage

Sharing

General

Target

221c2b8186a59a90f1a295509a4c5a90_NeikiAnalytics.exe
Size

512KB
Sample

240527-2j8b8adf97
MD5

221c2b8186a59a90f1a295509a4c5a90
SHA1

4903fb607d7f5aa464a4fefa45492158f8e8f4f7
SHA256

41d6584b47148deda14ffbc7e0d176fd3e8fe2cbfadffcc8b16e5958b6a48de1
SHA512

c1676499cc3fecf5794e082a4d043b24f9af64723869b079bf3d0d25c797429a32af6d9c32eab1fdf806932d326424d64eee889f150b2c8e6f1627934e42ff10
SSDEEP

6144:mSUT3MWBzc4/UZP8VU5tTO/ENURQPTlyl48pArv8kEVS1aHr:mSUT3MezGUG5t1sI5yl48pArv8o4L

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  221c2b8186a59a90f1a295509a4c5a90_NeikiAnalytics.exe
- Size
  
  512KB
- MD5
  
  221c2b8186a59a90f1a295509a4c5a90
- SHA1
  
  4903fb607d7f5aa464a4fefa45492158f8e8f4f7
- SHA256
  
  41d6584b47148deda14ffbc7e0d176fd3e8fe2cbfadffcc8b16e5958b6a48de1
- SHA512
  
  c1676499cc3fecf5794e082a4d043b24f9af64723869b079bf3d0d25c797429a32af6d9c32eab1fdf806932d326424d64eee889f150b2c8e6f1627934e42ff10
- SSDEEP
  
  6144:mSUT3MWBzc4/UZP8VU5tTO/ENURQPTlyl48pArv8kEVS1aHr:mSUT3MezGUG5t1sI5yl48pArv8o4L
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2