57ad86398b256cc710641b68670149dcdd36e871d3a8f49c5d0b16c0c9d15f5f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d233dff301ca942dd33bb2540d9a870_NeikiAnalytics.exe
Size

69KB
Sample

240604-h7gdvshd3t
MD5

3d233dff301ca942dd33bb2540d9a870
SHA1

a954b0a9ed65927d227c8bb84a444d6515c067ab
SHA256

57ad86398b256cc710641b68670149dcdd36e871d3a8f49c5d0b16c0c9d15f5f
SHA512

142a7c47de907ad494a1ccbf9cebd52174631a14245b810164cb00a89ae651b0157fe1829a44fdc8bac45ef1237767643ef924195d5d3d9ee28e2fe3498eaf98
SSDEEP

1536:FvhNj4KMKkVqgXbOEgdNein/GFZCeDAyY:Bh9U7VdbODdNFn/GFZC1yY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3d233dff301ca942dd33bb2540d9a870_NeikiAnalytics.exe
- Size
  
  69KB
- MD5
  
  3d233dff301ca942dd33bb2540d9a870
- SHA1
  
  a954b0a9ed65927d227c8bb84a444d6515c067ab
- SHA256
  
  57ad86398b256cc710641b68670149dcdd36e871d3a8f49c5d0b16c0c9d15f5f
- SHA512
  
  142a7c47de907ad494a1ccbf9cebd52174631a14245b810164cb00a89ae651b0157fe1829a44fdc8bac45ef1237767643ef924195d5d3d9ee28e2fe3498eaf98
- SSDEEP
  
  1536:FvhNj4KMKkVqgXbOEgdNein/GFZCeDAyY:Bh9U7VdbODdNFn/GFZC1yY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2