6f50b1a6cc0190522940b0a69122f8550910b507f0b43f8afa36313caf2ca2dc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06c089d9648231df805ae14fa98b0060_NeikiAnalytics.exe
Size

63KB
Sample

240528-zzwl9acd6t
MD5

06c089d9648231df805ae14fa98b0060
SHA1

0d28f107879162aace7c19ed98da2c7077e67f44
SHA256

6f50b1a6cc0190522940b0a69122f8550910b507f0b43f8afa36313caf2ca2dc
SHA512

dd81069250fee10be4a723017c144a6db2300267c4284ebd61057bd5b4ab53201c10046ed177e22abd13788e30bf3d3ec6c6b4e12be1e7511800e49384b67d87
SSDEEP

1536:NH081u8efxNxBG1Ccy15usfzpgJ15Ozn7AEzH1juIZo:qmu8efxNMXyy6pK1mNzH1juIZo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  06c089d9648231df805ae14fa98b0060_NeikiAnalytics.exe
- Size
  
  63KB
- MD5
  
  06c089d9648231df805ae14fa98b0060
- SHA1
  
  0d28f107879162aace7c19ed98da2c7077e67f44
- SHA256
  
  6f50b1a6cc0190522940b0a69122f8550910b507f0b43f8afa36313caf2ca2dc
- SHA512
  
  dd81069250fee10be4a723017c144a6db2300267c4284ebd61057bd5b4ab53201c10046ed177e22abd13788e30bf3d3ec6c6b4e12be1e7511800e49384b67d87
- SSDEEP
  
  1536:NH081u8efxNxBG1Ccy15usfzpgJ15Ozn7AEzH1juIZo:qmu8efxNMXyy6pK1mNzH1juIZo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2