e9ff8b4a2e75c70d03ce7e5786621e5a4fd2c38b44242038ecc963f988ad466b | Triage

Sharing

General

Target

917277d1dcf394e86215cacb53f10590_NeikiAnalytics.exe
Size

272KB
Sample

240601-hlyq1sdh68
MD5

917277d1dcf394e86215cacb53f10590
SHA1

643bb45a066c1c3c10a6be91e82a6d04b5a3a7ca
SHA256

e9ff8b4a2e75c70d03ce7e5786621e5a4fd2c38b44242038ecc963f988ad466b
SHA512

d1448bc690a4f2c78e645711d72e43edd727281e59709b5eb19e0503e377e2061aec86522fabc080d043ae71a975e79a20b39615d1cc57174c4d0da2fb910ef6
SSDEEP

6144:orTlv39bSR0xZKL2bWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQc/YRuEuT:orrbSwwL2bWGRdA6sQhPbWGRdA6sQxuB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  917277d1dcf394e86215cacb53f10590_NeikiAnalytics.exe
- Size
  
  272KB
- MD5
  
  917277d1dcf394e86215cacb53f10590
- SHA1
  
  643bb45a066c1c3c10a6be91e82a6d04b5a3a7ca
- SHA256
  
  e9ff8b4a2e75c70d03ce7e5786621e5a4fd2c38b44242038ecc963f988ad466b
- SHA512
  
  d1448bc690a4f2c78e645711d72e43edd727281e59709b5eb19e0503e377e2061aec86522fabc080d043ae71a975e79a20b39615d1cc57174c4d0da2fb910ef6
- SSDEEP
  
  6144:orTlv39bSR0xZKL2bWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQc/YRuEuT:orrbSwwL2bWGRdA6sQhPbWGRdA6sQxuB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2