74467d46c117236bd8d621aa7a6bac2ff9270e6d93e7d7461d20f540eaf3d9cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e17cec32ab12cc4a5d0825268ef97a0_NeikiAnalytics.exe
Size

505KB
Sample

240601-l3ma4ahd7v
MD5

3e17cec32ab12cc4a5d0825268ef97a0
SHA1

3109e791481a10a80718c2340914b0f16322cb4a
SHA256

74467d46c117236bd8d621aa7a6bac2ff9270e6d93e7d7461d20f540eaf3d9cc
SHA512

55299c2e0c2a0de1e6972e10b889e84cf5febbb2c2489e26280a72e36415b5b67533985cac7cc9e0734fd50e103906be9c78e7ef1cea45367ccb1f2a7537f792
SSDEEP

12288:wlbo+b1gL5pRTcAkS/3hzN8qE43fm78Vf:Wbo+G5jcAkSYqyEf

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3e17cec32ab12cc4a5d0825268ef97a0_NeikiAnalytics.exe
- Size
  
  505KB
- MD5
  
  3e17cec32ab12cc4a5d0825268ef97a0
- SHA1
  
  3109e791481a10a80718c2340914b0f16322cb4a
- SHA256
  
  74467d46c117236bd8d621aa7a6bac2ff9270e6d93e7d7461d20f540eaf3d9cc
- SHA512
  
  55299c2e0c2a0de1e6972e10b889e84cf5febbb2c2489e26280a72e36415b5b67533985cac7cc9e0734fd50e103906be9c78e7ef1cea45367ccb1f2a7537f792
- SSDEEP
  
  12288:wlbo+b1gL5pRTcAkS/3hzN8qE43fm78Vf:Wbo+G5jcAkSYqyEf
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2