0b2493e2640f106b62ba93a1ebaf4393023d5687d06f2d3fc4b060f27707c098 | Triage

Sharing

General

Target

1a3ddce06bc6f91f12acc6aed027cee0_NeikiAnalytics.exe
Size

827KB
Sample

240528-3rzkqahd8z
MD5

1a3ddce06bc6f91f12acc6aed027cee0
SHA1

fce71fd8a9a9f8ae16ae96d7ce9dd282cbe7f3fb
SHA256

0b2493e2640f106b62ba93a1ebaf4393023d5687d06f2d3fc4b060f27707c098
SHA512

27f9d8e739bb5c6a120dc9c63e6b358337a850038c1be7002021d2f5ab8f29911708badae87017d2a212e382ae60bb8fedceb135474c5a398af01f911593c0bc
SSDEEP

12288:1wCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozETM888888888888W8888888:ZNzCtUpQ9WWPBSSRMTEpXNTW

Score

7^/10

Malware Config

Targets

- Target
  
  1a3ddce06bc6f91f12acc6aed027cee0_NeikiAnalytics.exe
- Size
  
  827KB
- MD5
  
  1a3ddce06bc6f91f12acc6aed027cee0
- SHA1
  
  fce71fd8a9a9f8ae16ae96d7ce9dd282cbe7f3fb
- SHA256
  
  0b2493e2640f106b62ba93a1ebaf4393023d5687d06f2d3fc4b060f27707c098
- SHA512
  
  27f9d8e739bb5c6a120dc9c63e6b358337a850038c1be7002021d2f5ab8f29911708badae87017d2a212e382ae60bb8fedceb135474c5a398af01f911593c0bc
- SSDEEP
  
  12288:1wCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozETM888888888888W8888888:ZNzCtUpQ9WWPBSSRMTEpXNTW
Score

7^/10
- Drops startup file
- Loads dropped DLL
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2