e39b2f64c9838ddd733ff77319444a682148aef8f35fd3bb314cff779051dc17 | Triage

Sharing

General

Target

a1903315fce48068b045c2e0419ac2b0_NeikiAnalytics.exe
Size

145KB
Sample

240603-neyqbsce7y
MD5

a1903315fce48068b045c2e0419ac2b0
SHA1

eb0430b4dcaccd8a679829467e8702ab26d9ac9d
SHA256

e39b2f64c9838ddd733ff77319444a682148aef8f35fd3bb314cff779051dc17
SHA512

417d24caa85c3a747df6bc6f4edc388e2b1b69aa59932eaba4d90891030438b6b70ada621cf06f59bf0e7e2c9172f21d734a615be9cd16da2d3e888eaa6f5ff7
SSDEEP

1536:/bhBXOouJM/xjAHhehxTSeqEy3J30WPrIPrWFFZy6BEVsNo2Ae5JYFnVEyQmEydP:7XOVJckHQaeqD3pFBEV52Ae5aFnVB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a1903315fce48068b045c2e0419ac2b0_NeikiAnalytics.exe
- Size
  
  145KB
- MD5
  
  a1903315fce48068b045c2e0419ac2b0
- SHA1
  
  eb0430b4dcaccd8a679829467e8702ab26d9ac9d
- SHA256
  
  e39b2f64c9838ddd733ff77319444a682148aef8f35fd3bb314cff779051dc17
- SHA512
  
  417d24caa85c3a747df6bc6f4edc388e2b1b69aa59932eaba4d90891030438b6b70ada621cf06f59bf0e7e2c9172f21d734a615be9cd16da2d3e888eaa6f5ff7
- SSDEEP
  
  1536:/bhBXOouJM/xjAHhehxTSeqEy3J30WPrIPrWFFZy6BEVsNo2Ae5JYFnVEyQmEydP:7XOVJckHQaeqD3pFBEV52Ae5aFnVB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2