d9d47a7947b06ed69ecc40235776e24556fea754d2fc6a3c1b95e2078f6127bd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e578b229de5679bd6de477b61648d20_NeikiAnalytics.exe
Size

4.1MB
Sample

240611-kd6g1a1dkp
MD5

2e578b229de5679bd6de477b61648d20
SHA1

17a0e6e8f39bd47186b503bf8fee56c810081f2d
SHA256

d9d47a7947b06ed69ecc40235776e24556fea754d2fc6a3c1b95e2078f6127bd
SHA512

dbf1805a4fa4a695e2cf4f74c6a1575ae38111a21ba1973783e38c6985999dc69e5691bc26a7e46b5fed66cb02297df0a650743e0144c429bf2c91d6c11cf381
SSDEEP

98304:+R0pI/IQlUoMPdmpSpH4ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdmY5n9klRKN41v

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  2e578b229de5679bd6de477b61648d20_NeikiAnalytics.exe
- Size
  
  4.1MB
- MD5
  
  2e578b229de5679bd6de477b61648d20
- SHA1
  
  17a0e6e8f39bd47186b503bf8fee56c810081f2d
- SHA256
  
  d9d47a7947b06ed69ecc40235776e24556fea754d2fc6a3c1b95e2078f6127bd
- SHA512
  
  dbf1805a4fa4a695e2cf4f74c6a1575ae38111a21ba1973783e38c6985999dc69e5691bc26a7e46b5fed66cb02297df0a650743e0144c429bf2c91d6c11cf381
- SSDEEP
  
  98304:+R0pI/IQlUoMPdmpSpH4ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdmY5n9klRKN41v
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2