c22b776f759ab636ae617ba04eea1b3f7d2d72428157e52696fc2561e2ca88ec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d9d42dc3fa491c4956064f3264e8dc0_NeikiAnalytics.exe
Size

90KB
Sample

240528-llrjgsfd37
MD5

3d9d42dc3fa491c4956064f3264e8dc0
SHA1

51cef68068035ddae3ba48f218047ff306fb13b0
SHA256

c22b776f759ab636ae617ba04eea1b3f7d2d72428157e52696fc2561e2ca88ec
SHA512

b322707b47d1cf78638b1ebdc95fee9a02d231860e1dcda2b009a03c179ded589e67501b52a235ab849f9220ea611b3611c8e2454fb5979f979ce1165cc536d3
SSDEEP

1536:NUVZ+uq4xYNMZ6Tg1B4zPQBVsiB6uPxcmFWkShfjsJlWK97+uWGY0u/Ub0VkVNK:OSx4xYNc1qzgZB6uPxcmEkS5jew9JG3w

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3d9d42dc3fa491c4956064f3264e8dc0_NeikiAnalytics.exe
- Size
  
  90KB
- MD5
  
  3d9d42dc3fa491c4956064f3264e8dc0
- SHA1
  
  51cef68068035ddae3ba48f218047ff306fb13b0
- SHA256
  
  c22b776f759ab636ae617ba04eea1b3f7d2d72428157e52696fc2561e2ca88ec
- SHA512
  
  b322707b47d1cf78638b1ebdc95fee9a02d231860e1dcda2b009a03c179ded589e67501b52a235ab849f9220ea611b3611c8e2454fb5979f979ce1165cc536d3
- SSDEEP
  
  1536:NUVZ+uq4xYNMZ6Tg1B4zPQBVsiB6uPxcmFWkShfjsJlWK97+uWGY0u/Ub0VkVNK:OSx4xYNc1qzgZB6uPxcmEkS5jew9JG3w
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2