1dfe98802f74fcabcf3eee625dd17d9c489d812b2ba3bfb7e637234862792d69 | Triage

Sharing

General

Target

0d379707623a9ba888d5ae0f79e5cae0_NeikiAnalytics.exe
Size

211KB
Sample

240601-3rn4zsbg46
MD5

0d379707623a9ba888d5ae0f79e5cae0
SHA1

4d629c3a0f1443ee63650a54e01d16221c4c5989
SHA256

1dfe98802f74fcabcf3eee625dd17d9c489d812b2ba3bfb7e637234862792d69
SHA512

3106326374bfcf218e2deff5961c59657b9a722293b90aee85cf1a41d10f899fba9522ee3ae704080ff640576111df5bdd3d83762704c859e04ad65db07d5eb1
SSDEEP

6144:RYn4eq40kSla5EQeYr75lHzpaF2e6UK+42GTQMJSZO5f7M0rx7/N:On4eq4ysKQeYr75lTefkY660fII

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0d379707623a9ba888d5ae0f79e5cae0_NeikiAnalytics.exe
- Size
  
  211KB
- MD5
  
  0d379707623a9ba888d5ae0f79e5cae0
- SHA1
  
  4d629c3a0f1443ee63650a54e01d16221c4c5989
- SHA256
  
  1dfe98802f74fcabcf3eee625dd17d9c489d812b2ba3bfb7e637234862792d69
- SHA512
  
  3106326374bfcf218e2deff5961c59657b9a722293b90aee85cf1a41d10f899fba9522ee3ae704080ff640576111df5bdd3d83762704c859e04ad65db07d5eb1
- SSDEEP
  
  6144:RYn4eq40kSla5EQeYr75lHzpaF2e6UK+42GTQMJSZO5f7M0rx7/N:On4eq4ysKQeYr75lTefkY660fII
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2