8d149d740b17747d42eda3aa0ed4698c606726010023f2fe69b951956476da13 | Triage

Sharing

General

Target

8e9206a84ee406b542adac3ab697f000_NeikiAnalytics.exe
Size

72KB
Sample

240601-frxpssah3y
MD5

8e9206a84ee406b542adac3ab697f000
SHA1

ba525d88af6070c56b8ced2b7dc9a3891b83685b
SHA256

8d149d740b17747d42eda3aa0ed4698c606726010023f2fe69b951956476da13
SHA512

8a2743ce0d03ee876267c050bcc1f0b3290d059ce15d48c8431ade07b1d9fb9bbae643ddb2cfe89ee10c28363c355656717f369443cbb969453bb998b87d543e
SSDEEP

1536:twRTW+ypjE7SOiaAwW4TIfHTDIN6rKL0yRNmfZF4n6RQ+cDbEyRCRRRoR4Rk4:AW+yiUwWmIfzE8rzle9Ey032ya4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8e9206a84ee406b542adac3ab697f000_NeikiAnalytics.exe
- Size
  
  72KB
- MD5
  
  8e9206a84ee406b542adac3ab697f000
- SHA1
  
  ba525d88af6070c56b8ced2b7dc9a3891b83685b
- SHA256
  
  8d149d740b17747d42eda3aa0ed4698c606726010023f2fe69b951956476da13
- SHA512
  
  8a2743ce0d03ee876267c050bcc1f0b3290d059ce15d48c8431ade07b1d9fb9bbae643ddb2cfe89ee10c28363c355656717f369443cbb969453bb998b87d543e
- SSDEEP
  
  1536:twRTW+ypjE7SOiaAwW4TIfHTDIN6rKL0yRNmfZF4n6RQ+cDbEyRCRRRoR4Rk4:AW+yiUwWmIfzE8rzle9Ey032ya4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2