2545ea10a99de590e31d239272445550d8dcfebafbf0cd08eeb193b2b4b7e1e3 | Triage

Sharing

General

Target

97ad5f719d4e4eef0a760341ca555390_NeikiAnalytics.exe
Size

98KB
Sample

240603-che7lsgg34
MD5

97ad5f719d4e4eef0a760341ca555390
SHA1

70c8e8d79a6875b7708483033597717a36b4e9fa
SHA256

2545ea10a99de590e31d239272445550d8dcfebafbf0cd08eeb193b2b4b7e1e3
SHA512

99afe5579200d99c6ff385d169fa825c8202d49bcb2ccc0e59259d71634290ccb089c3586aabf23f458a1ee5e19eac89fbb39c8423f530721d79da7fcc06b871
SSDEEP

3072:MUQo0ssu98uUOSqwxvppEyX47EMeFKPD375lHzpa1P:Mno0JzqYpy7EMeYr75lHzpaF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  97ad5f719d4e4eef0a760341ca555390_NeikiAnalytics.exe
- Size
  
  98KB
- MD5
  
  97ad5f719d4e4eef0a760341ca555390
- SHA1
  
  70c8e8d79a6875b7708483033597717a36b4e9fa
- SHA256
  
  2545ea10a99de590e31d239272445550d8dcfebafbf0cd08eeb193b2b4b7e1e3
- SHA512
  
  99afe5579200d99c6ff385d169fa825c8202d49bcb2ccc0e59259d71634290ccb089c3586aabf23f458a1ee5e19eac89fbb39c8423f530721d79da7fcc06b871
- SSDEEP
  
  3072:MUQo0ssu98uUOSqwxvppEyX47EMeFKPD375lHzpa1P:Mno0JzqYpy7EMeYr75lHzpaF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2