7f444301a008a4d102113c2996645be54dd4787d1965864ac9eb804e1dd5d34e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11601b9483fabcff606dc267c4f2c580_NeikiAnalytics.exe
Size

318KB
Sample

240602-afrrhscd93
MD5

11601b9483fabcff606dc267c4f2c580
SHA1

ddbbdc7de9ebf9c77f4e764d6fede3b14f0cc871
SHA256

7f444301a008a4d102113c2996645be54dd4787d1965864ac9eb804e1dd5d34e
SHA512

7d767a4f27732ce4aecc88ac32fec0f37e70b629af741043d13f908f7ef95223d6a3e9786af949dc1ab097ffa599e00b0ee95fc6d87743c5f259aea8b9848b7c
SSDEEP

6144:qqI2TTTTTTlbeuZcRVEQHdMcm4FmowdHoS7c5cm4FmowdHoSrNF9xRVEQHd4:P/TTTTTTlSueO4wFHoS04wFHoSrZx8

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  11601b9483fabcff606dc267c4f2c580_NeikiAnalytics.exe
- Size
  
  318KB
- MD5
  
  11601b9483fabcff606dc267c4f2c580
- SHA1
  
  ddbbdc7de9ebf9c77f4e764d6fede3b14f0cc871
- SHA256
  
  7f444301a008a4d102113c2996645be54dd4787d1965864ac9eb804e1dd5d34e
- SHA512
  
  7d767a4f27732ce4aecc88ac32fec0f37e70b629af741043d13f908f7ef95223d6a3e9786af949dc1ab097ffa599e00b0ee95fc6d87743c5f259aea8b9848b7c
- SSDEEP
  
  6144:qqI2TTTTTTlbeuZcRVEQHdMcm4FmowdHoS7c5cm4FmowdHoSrNF9xRVEQHd4:P/TTTTTTlSueO4wFHoS04wFHoSrZx8
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2