fcbc2afd022b1705ea5c587ab4e27acf3582a46ff7097556b873da93ab3da11e | Triage

Sharing

General

Target

1c550947ae4b1bd79c28f14c84f6de50_NeikiAnalytics.exe
Size

224KB
Sample

240610-1gerfs1epb
MD5

1c550947ae4b1bd79c28f14c84f6de50
SHA1

4d1394d4aa5349fae25185b8fcffefe6df563aaa
SHA256

fcbc2afd022b1705ea5c587ab4e27acf3582a46ff7097556b873da93ab3da11e
SHA512

45bd071f39948b7fd373f69b32c46ade75c8a9d74fa802549348d6e951db26b08a3b4c343c54c1fade9e74d0a82a9ecf2fac977794f957a24f402d66f8810351
SSDEEP

6144:aGinhC1znEo14rQD85k/hQO+zrWnAdqjeOpKff:aG5znE/rQg5W/+zrWAI5KH

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1c550947ae4b1bd79c28f14c84f6de50_NeikiAnalytics.exe
- Size
  
  224KB
- MD5
  
  1c550947ae4b1bd79c28f14c84f6de50
- SHA1
  
  4d1394d4aa5349fae25185b8fcffefe6df563aaa
- SHA256
  
  fcbc2afd022b1705ea5c587ab4e27acf3582a46ff7097556b873da93ab3da11e
- SHA512
  
  45bd071f39948b7fd373f69b32c46ade75c8a9d74fa802549348d6e951db26b08a3b4c343c54c1fade9e74d0a82a9ecf2fac977794f957a24f402d66f8810351
- SSDEEP
  
  6144:aGinhC1znEo14rQD85k/hQO+zrWnAdqjeOpKff:aG5znE/rQg5W/+zrWAI5KH
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2