ad7f7d36aa0df0bf098fe58ea606bec9da73a7230c7ee2e50f460ed47f23201b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b37a412cd46909a13c73dadf1c0868e0_NeikiAnalytics.exe
Size

272KB
Sample

240601-qhg8vsea42
MD5

b37a412cd46909a13c73dadf1c0868e0
SHA1

18a62dfdd724824dc5ba4a720949458a348be67a
SHA256

ad7f7d36aa0df0bf098fe58ea606bec9da73a7230c7ee2e50f460ed47f23201b
SHA512

63aaaa4c7c025fbca76bc783c2e1b97f0e55b2324514bff803de0a3c8d43b4bd1ce9558b4f153400bd93222b0b6edc0baa47ad8ad4fbe243195048aabb8e85ff
SSDEEP

6144:yERtQfP/7zwv95PjZukD6xjC6ZgsOK4AHXwpnxGvN98gZ+/+:zHQfPXwvfex+6ZxyhY97n

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b37a412cd46909a13c73dadf1c0868e0_NeikiAnalytics.exe
- Size
  
  272KB
- MD5
  
  b37a412cd46909a13c73dadf1c0868e0
- SHA1
  
  18a62dfdd724824dc5ba4a720949458a348be67a
- SHA256
  
  ad7f7d36aa0df0bf098fe58ea606bec9da73a7230c7ee2e50f460ed47f23201b
- SHA512
  
  63aaaa4c7c025fbca76bc783c2e1b97f0e55b2324514bff803de0a3c8d43b4bd1ce9558b4f153400bd93222b0b6edc0baa47ad8ad4fbe243195048aabb8e85ff
- SSDEEP
  
  6144:yERtQfP/7zwv95PjZukD6xjC6ZgsOK4AHXwpnxGvN98gZ+/+:zHQfPXwvfex+6ZxyhY97n
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2