d95e270db4833f40d324312d8156fa9c4fc136f502bca517cc72d49575b0cd9f | Triage

Sharing

General

Target

c1c6bb66f20a943050af9f7afd0955c0_NeikiAnalytics.exe
Size

29KB
Sample

240527-ltnskafe8t
MD5

c1c6bb66f20a943050af9f7afd0955c0
SHA1

f9a79b776f276f349db633a6d4a87a4d28dd0b4b
SHA256

d95e270db4833f40d324312d8156fa9c4fc136f502bca517cc72d49575b0cd9f
SHA512

e61752312324e5fdfe4fa67b06d2484cf2fcfddbe0aa2d5fa43cda68eb4051425cb0d3d04f3e93129ae83126899b63ce12620b06ca145bcd4616768d32ba0785
SSDEEP

768:plsh/EIjPBW7LmLq0bv7rox9vXy7xj7R7R7R7P:pr6P8uLq0bvuR+l

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  c1c6bb66f20a943050af9f7afd0955c0_NeikiAnalytics.exe
- Size
  
  29KB
- MD5
  
  c1c6bb66f20a943050af9f7afd0955c0
- SHA1
  
  f9a79b776f276f349db633a6d4a87a4d28dd0b4b
- SHA256
  
  d95e270db4833f40d324312d8156fa9c4fc136f502bca517cc72d49575b0cd9f
- SHA512
  
  e61752312324e5fdfe4fa67b06d2484cf2fcfddbe0aa2d5fa43cda68eb4051425cb0d3d04f3e93129ae83126899b63ce12620b06ca145bcd4616768d32ba0785
- SSDEEP
  
  768:plsh/EIjPBW7LmLq0bv7rox9vXy7xj7R7R7R7P:pr6P8uLq0bvuR+l
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2