353d52aa2f49043fe972fb7f3f31612bc536b0e7d65600f7e1376d47bf4fff44 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1638e681788dd7b47c6a38566a916eb0_NeikiAnalytics.exe
Size

80KB
Sample

240604-akjxgafb69
MD5

1638e681788dd7b47c6a38566a916eb0
SHA1

ac0780571a638ec0a86b54d9aded27db25aab095
SHA256

353d52aa2f49043fe972fb7f3f31612bc536b0e7d65600f7e1376d47bf4fff44
SHA512

4de69ca1ea7e6a039b8a9d288421acc04ebde1a994648e5273103811b6938946a099f83dfb83049935e26f4101e2e6da8325dbcec429789bacf1892f9f31a001
SSDEEP

1536:/a/5l0yqetHnBpqeMLVceamIX+tjXGnkSM2Lv1CYrum8SPG2:/U5l0ybmeNuRXGnkMv1VT8SL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1638e681788dd7b47c6a38566a916eb0_NeikiAnalytics.exe
- Size
  
  80KB
- MD5
  
  1638e681788dd7b47c6a38566a916eb0
- SHA1
  
  ac0780571a638ec0a86b54d9aded27db25aab095
- SHA256
  
  353d52aa2f49043fe972fb7f3f31612bc536b0e7d65600f7e1376d47bf4fff44
- SHA512
  
  4de69ca1ea7e6a039b8a9d288421acc04ebde1a994648e5273103811b6938946a099f83dfb83049935e26f4101e2e6da8325dbcec429789bacf1892f9f31a001
- SSDEEP
  
  1536:/a/5l0yqetHnBpqeMLVceamIX+tjXGnkSM2Lv1CYrum8SPG2:/U5l0ybmeNuRXGnkMv1VT8SL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2