33c6b3b99a291ffb69884be3f92fa39b32a6ab712f0920ffbcd48655755b998d | Triage

Sharing

General

Target

c30f1c7a6282c6986e5ed660f5e88a80_NeikiAnalytics.exe
Size

256KB
Sample

240531-vanswsfb33
MD5

c30f1c7a6282c6986e5ed660f5e88a80
SHA1

3cef1a9da80e4a3134a47ecd9a3aa24ee43b083c
SHA256

33c6b3b99a291ffb69884be3f92fa39b32a6ab712f0920ffbcd48655755b998d
SHA512

2fc5536004d8bd57f92cee40110edb036e15d3b41214fd3048e5989961a4f964ee537e8ca7ba2d105bfcc55abcff9b998fe9832e28a6ce9d4f540fd7cca74173
SSDEEP

3072:ZpSDCiXI2VceK3KcWmjRrzqzWspSnocyA5qKcWmjRrzeceKSAxpce7fuFfySIV7A:ZYvX3HVpaopOpHVILifyeYVDcfR

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c30f1c7a6282c6986e5ed660f5e88a80_NeikiAnalytics.exe
- Size
  
  256KB
- MD5
  
  c30f1c7a6282c6986e5ed660f5e88a80
- SHA1
  
  3cef1a9da80e4a3134a47ecd9a3aa24ee43b083c
- SHA256
  
  33c6b3b99a291ffb69884be3f92fa39b32a6ab712f0920ffbcd48655755b998d
- SHA512
  
  2fc5536004d8bd57f92cee40110edb036e15d3b41214fd3048e5989961a4f964ee537e8ca7ba2d105bfcc55abcff9b998fe9832e28a6ce9d4f540fd7cca74173
- SSDEEP
  
  3072:ZpSDCiXI2VceK3KcWmjRrzqzWspSnocyA5qKcWmjRrzeceKSAxpce7fuFfySIV7A:ZYvX3HVpaopOpHVILifyeYVDcfR
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2