84fe3501f011ef3baff52dae20ea949e3ae0e39f5b83191c365d36ef76de8182 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

323f6ee396c4d6919da26cd0474b6440_NeikiAnalytics.exe
Size

163KB
Sample

240528-ez5vpsfe99
MD5

323f6ee396c4d6919da26cd0474b6440
SHA1

d8a9a08513a4f4982dd2b077777dbea8a8641f09
SHA256

84fe3501f011ef3baff52dae20ea949e3ae0e39f5b83191c365d36ef76de8182
SHA512

913695d68e6d5676f6f16d195dd1bf825f68302e01d59bdef5be1c754da8e7985ba838467bb8a930748e07511469e61f27d5eee9c2a271f3c3e89688854e1646
SSDEEP

1536:PE12m69FdTLKckiFQJFNEFljbSRZOruv3lProNVU4qNVUrk/9QbfBr+7GwKrPAsf:cpCLbFcmx2Wuv3ltOrWKDBr+yJb

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  323f6ee396c4d6919da26cd0474b6440_NeikiAnalytics.exe
- Size
  
  163KB
- MD5
  
  323f6ee396c4d6919da26cd0474b6440
- SHA1
  
  d8a9a08513a4f4982dd2b077777dbea8a8641f09
- SHA256
  
  84fe3501f011ef3baff52dae20ea949e3ae0e39f5b83191c365d36ef76de8182
- SHA512
  
  913695d68e6d5676f6f16d195dd1bf825f68302e01d59bdef5be1c754da8e7985ba838467bb8a930748e07511469e61f27d5eee9c2a271f3c3e89688854e1646
- SSDEEP
  
  1536:PE12m69FdTLKckiFQJFNEFljbSRZOruv3lProNVU4qNVUrk/9QbfBr+7GwKrPAsf:cpCLbFcmx2Wuv3ltOrWKDBr+yJb
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2