e33fb9c6942e63444f3c09c1f29315c34cdb4646bc08a44e9cc23404145c1e58 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ec4597053574d69f5951da761d305f0_NeikiAnalytics.exe
Size

544KB
Sample

240605-f1cqzsfb7w
MD5

3ec4597053574d69f5951da761d305f0
SHA1

f0bedef76896372d98fd25d1b61a7397f25de60c
SHA256

e33fb9c6942e63444f3c09c1f29315c34cdb4646bc08a44e9cc23404145c1e58
SHA512

9e3e9b9ffc528795ab2738066abc1270d45d72e2313c40439f7d32d5fa3e7b260e78fdef4b793837c7f4f77cb49d9af7862d46431393e9680ed5bf8dcb458711
SSDEEP

6144:Ui05kH9OyU2uv5SRf/FWgFgtWgqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukTS:vrHGPv5SmptbDmUWuVZkxikdXcq

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3ec4597053574d69f5951da761d305f0_NeikiAnalytics.exe
- Size
  
  544KB
- MD5
  
  3ec4597053574d69f5951da761d305f0
- SHA1
  
  f0bedef76896372d98fd25d1b61a7397f25de60c
- SHA256
  
  e33fb9c6942e63444f3c09c1f29315c34cdb4646bc08a44e9cc23404145c1e58
- SHA512
  
  9e3e9b9ffc528795ab2738066abc1270d45d72e2313c40439f7d32d5fa3e7b260e78fdef4b793837c7f4f77cb49d9af7862d46431393e9680ed5bf8dcb458711
- SSDEEP
  
  6144:Ui05kH9OyU2uv5SRf/FWgFgtWgqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukTS:vrHGPv5SmptbDmUWuVZkxikdXcq
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2