6298141046c6d2165cc17388faf3e25d09e89164371048015cff8eb6293f7d88 | Triage

Sharing

General

Target

1bef02afc46e78f7583bcccfb941f570_NeikiAnalytics.exe
Size

81KB
Sample

240602-bs36raef55
MD5

1bef02afc46e78f7583bcccfb941f570
SHA1

aeae01299b20018fb8e41f164028fa4a0a8a92da
SHA256

6298141046c6d2165cc17388faf3e25d09e89164371048015cff8eb6293f7d88
SHA512

14c5ea03543af6f27922f5bf65467e38c61cd805bc809f8b419f21527b42e8d9a5926b75f76a1eaef4d68f8432e1b2a99e74ea104c4599e4b3a36eee46cd5e14
SSDEEP

1536:BIA0DGZyk1RGCpFtClxJWqoaIZBCVO2w7m4LO++/+1m6KadhYxU33HX0L:NSGZyMj7kx43UVzw/LrCimBaH8UH30L

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1bef02afc46e78f7583bcccfb941f570_NeikiAnalytics.exe
- Size
  
  81KB
- MD5
  
  1bef02afc46e78f7583bcccfb941f570
- SHA1
  
  aeae01299b20018fb8e41f164028fa4a0a8a92da
- SHA256
  
  6298141046c6d2165cc17388faf3e25d09e89164371048015cff8eb6293f7d88
- SHA512
  
  14c5ea03543af6f27922f5bf65467e38c61cd805bc809f8b419f21527b42e8d9a5926b75f76a1eaef4d68f8432e1b2a99e74ea104c4599e4b3a36eee46cd5e14
- SSDEEP
  
  1536:BIA0DGZyk1RGCpFtClxJWqoaIZBCVO2w7m4LO++/+1m6KadhYxU33HX0L:NSGZyMj7kx43UVzw/LrCimBaH8UH30L
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2