f0f3ad9f2304245eaa09cfb94aa64db68c4aa4a81730a1966c4ca60b3da8efd4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f394dda64257d43eeb09238afbcd150_NeikiAnalytics.exe
Size

772KB
Sample

240604-caj6laaa52
MD5

1f394dda64257d43eeb09238afbcd150
SHA1

ca23c9ccaf34cf14c7ef663d7f9c1a69eae2c83d
SHA256

f0f3ad9f2304245eaa09cfb94aa64db68c4aa4a81730a1966c4ca60b3da8efd4
SHA512

c4801ac910ae657ed724d54d698345a4167f264533f1c8dbd88ac33edc5ed70d94b820ff07a0387f20ec80f5af8da281abc32525379cde6941fb14e64c8e437f
SSDEEP

6144:bi05kH9OyU2uv5SRf/FWgFgt8gqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukT4:urHGPv5SmpthDmUWuVZkxikdXcq

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1f394dda64257d43eeb09238afbcd150_NeikiAnalytics.exe
- Size
  
  772KB
- MD5
  
  1f394dda64257d43eeb09238afbcd150
- SHA1
  
  ca23c9ccaf34cf14c7ef663d7f9c1a69eae2c83d
- SHA256
  
  f0f3ad9f2304245eaa09cfb94aa64db68c4aa4a81730a1966c4ca60b3da8efd4
- SHA512
  
  c4801ac910ae657ed724d54d698345a4167f264533f1c8dbd88ac33edc5ed70d94b820ff07a0387f20ec80f5af8da281abc32525379cde6941fb14e64c8e437f
- SSDEEP
  
  6144:bi05kH9OyU2uv5SRf/FWgFgt8gqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukT4:urHGPv5SmpthDmUWuVZkxikdXcq
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2