9af9173d54b3d5fc8055b64bb29c1d7810a09b80017ac02fdcfe09900dfad9b9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38aedc62a6250dca5d0eb473ad49bfc0_NeikiAnalytics.exe
Size

808KB
Sample

240604-nqwecaeg8t
MD5

38aedc62a6250dca5d0eb473ad49bfc0
SHA1

886e23b9c21b1933e6e6017701216d2a8206ed5a
SHA256

9af9173d54b3d5fc8055b64bb29c1d7810a09b80017ac02fdcfe09900dfad9b9
SHA512

9470ca059bf078ec935632ef42591084713fb0c2a3883bbbbd19bfa11d5b5738330dc36b10bc8c87e95ccfb6aa6f8169725328dab66a86f9f73c195e0cf3854f
SSDEEP

6144:oi05kH9OyU2uv5SRf/FWgFgtdgqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukTQ:7rHGPv5SmpteDmUWuVZkxikdXcq

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  38aedc62a6250dca5d0eb473ad49bfc0_NeikiAnalytics.exe
- Size
  
  808KB
- MD5
  
  38aedc62a6250dca5d0eb473ad49bfc0
- SHA1
  
  886e23b9c21b1933e6e6017701216d2a8206ed5a
- SHA256
  
  9af9173d54b3d5fc8055b64bb29c1d7810a09b80017ac02fdcfe09900dfad9b9
- SHA512
  
  9470ca059bf078ec935632ef42591084713fb0c2a3883bbbbd19bfa11d5b5738330dc36b10bc8c87e95ccfb6aa6f8169725328dab66a86f9f73c195e0cf3854f
- SSDEEP
  
  6144:oi05kH9OyU2uv5SRf/FWgFgtdgqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukTQ:7rHGPv5SmpteDmUWuVZkxikdXcq
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2