c9ce87a3a3773645975e0e379710ea9aea26c3c59503978d33d24f03bc9814a6 | Triage

Sharing

General

Target

33882a921be6f0aa6b5d165b1337f8c0_NeikiAnalytics.exe
Size

249KB
Sample

240604-gc6jtseh9t
MD5

33882a921be6f0aa6b5d165b1337f8c0
SHA1

e9a4dc49275b5341484c8c09b15ea8df1752af99
SHA256

c9ce87a3a3773645975e0e379710ea9aea26c3c59503978d33d24f03bc9814a6
SHA512

e8d123ab582c32ae8867675136f9c206469e7d86cf2386054635ec5aae720a28eabf35da1b7185326ce5fc47648c272119884cb2c48358b032a5267fecf05b76
SSDEEP

3072:INHA5Ev/9rARp+8Q/etUEdmjRrz3TIUV4BKxAcL5CY2VePI8C3U/XYMJ2okZk:qV390FQWSEdGTBki5CYtI8TAokZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  33882a921be6f0aa6b5d165b1337f8c0_NeikiAnalytics.exe
- Size
  
  249KB
- MD5
  
  33882a921be6f0aa6b5d165b1337f8c0
- SHA1
  
  e9a4dc49275b5341484c8c09b15ea8df1752af99
- SHA256
  
  c9ce87a3a3773645975e0e379710ea9aea26c3c59503978d33d24f03bc9814a6
- SHA512
  
  e8d123ab582c32ae8867675136f9c206469e7d86cf2386054635ec5aae720a28eabf35da1b7185326ce5fc47648c272119884cb2c48358b032a5267fecf05b76
- SSDEEP
  
  3072:INHA5Ev/9rARp+8Q/etUEdmjRrz3TIUV4BKxAcL5CY2VePI8C3U/XYMJ2okZk:qV390FQWSEdGTBki5CYtI8TAokZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2