574f2a9ffc492107bca306ef2aa032392752df60d6a6f5520ab428112c70146f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29522dabf4e3e67177dad225b553d580_NeikiAnalytics.exe
Size

192KB
Sample

240528-avny6sfg4x
MD5

29522dabf4e3e67177dad225b553d580
SHA1

f871e7cdb5ffd0fccf5c5b9d6bcd228b6b9a52e1
SHA256

574f2a9ffc492107bca306ef2aa032392752df60d6a6f5520ab428112c70146f
SHA512

be8aceb97c43556da2236997a397165fd022e73c3e072564675a2b64edc138d3023e30581d82f8f0c14fa3ce4183526e8918f7097c19afb386f90d44b1f90db2
SSDEEP

3072:9MQBcmrKbAlx91rS1jj6+JB8M6m9jqLsFmsdYXmLlcJVIZen+Vcv2JBwwRBkBnR9:WQBcRex91rSFj6MB8MhjwszeXmr8SeT

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  29522dabf4e3e67177dad225b553d580_NeikiAnalytics.exe
- Size
  
  192KB
- MD5
  
  29522dabf4e3e67177dad225b553d580
- SHA1
  
  f871e7cdb5ffd0fccf5c5b9d6bcd228b6b9a52e1
- SHA256
  
  574f2a9ffc492107bca306ef2aa032392752df60d6a6f5520ab428112c70146f
- SHA512
  
  be8aceb97c43556da2236997a397165fd022e73c3e072564675a2b64edc138d3023e30581d82f8f0c14fa3ce4183526e8918f7097c19afb386f90d44b1f90db2
- SSDEEP
  
  3072:9MQBcmrKbAlx91rS1jj6+JB8M6m9jqLsFmsdYXmLlcJVIZen+Vcv2JBwwRBkBnR9:WQBcRex91rSFj6MB8MhjwszeXmr8SeT
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2