a548d6e1ce88334ddec458b4e59db5bbe33afdb64eaf592e1fe77071ce3a5de3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e6796fe60be81185775d087649be670_NeikiAnalytics.exe
Size

64KB
Sample

240528-15yjgaee9x
MD5

0e6796fe60be81185775d087649be670
SHA1

10cd93aec59ecc3a73edb4bee165dee670a61279
SHA256

a548d6e1ce88334ddec458b4e59db5bbe33afdb64eaf592e1fe77071ce3a5de3
SHA512

869e5306c739a3fcd2e30b6b0214e1a5f608fe6a0d3537b25b055ef3f097e357bbff6d9c16114002e6c3b19cab12f72ce4e218c5cedd926e6bfe17a16aa75000
SSDEEP

1536:OwBE+pXCWt1iQ7XoxObSDj40H4XUwXfzwv:OBcTSISwgsPzwv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0e6796fe60be81185775d087649be670_NeikiAnalytics.exe
- Size
  
  64KB
- MD5
  
  0e6796fe60be81185775d087649be670
- SHA1
  
  10cd93aec59ecc3a73edb4bee165dee670a61279
- SHA256
  
  a548d6e1ce88334ddec458b4e59db5bbe33afdb64eaf592e1fe77071ce3a5de3
- SHA512
  
  869e5306c739a3fcd2e30b6b0214e1a5f608fe6a0d3537b25b055ef3f097e357bbff6d9c16114002e6c3b19cab12f72ce4e218c5cedd926e6bfe17a16aa75000
- SSDEEP
  
  1536:OwBE+pXCWt1iQ7XoxObSDj40H4XUwXfzwv:OBcTSISwgsPzwv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2