cf056eef42c6c29e6f04e592c0a01fd04224e19dc2e3920e6631d7b1061d74a4 | Triage

Sharing

General

Target

4a8e5a3af4ea20df121c53aef8131e60_NeikiAnalytics.exe
Size

472KB
Sample

240605-jzl5tabb89
MD5

4a8e5a3af4ea20df121c53aef8131e60
SHA1

95052233e658df40c50e241bdb8bc0af96964642
SHA256

cf056eef42c6c29e6f04e592c0a01fd04224e19dc2e3920e6631d7b1061d74a4
SHA512

955dd4091944792842f51de3006f9313e2e4a740fd71db28f169b87c7144876246255d293c0b2fc70a1c605710d1f94a2fec1ff3e17ca0dc86ae6446ee93ba1a
SSDEEP

6144:4i05kH9OyU2uv5SRf/FWgFgtH+gqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukE:LrHGPv5SmptHDDmUWuVZkxikdXcq

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  4a8e5a3af4ea20df121c53aef8131e60_NeikiAnalytics.exe
- Size
  
  472KB
- MD5
  
  4a8e5a3af4ea20df121c53aef8131e60
- SHA1
  
  95052233e658df40c50e241bdb8bc0af96964642
- SHA256
  
  cf056eef42c6c29e6f04e592c0a01fd04224e19dc2e3920e6631d7b1061d74a4
- SHA512
  
  955dd4091944792842f51de3006f9313e2e4a740fd71db28f169b87c7144876246255d293c0b2fc70a1c605710d1f94a2fec1ff3e17ca0dc86ae6446ee93ba1a
- SSDEEP
  
  6144:4i05kH9OyU2uv5SRf/FWgFgtH+gqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukE:LrHGPv5SmptHDDmUWuVZkxikdXcq
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2