21b701db70362a8698ee48fd47081bf0abbec49e394ce80259e9817b7fde8335 | Triage

Sharing

General

Target

43b17dd5dad517351ffd10c390a224d0_NeikiAnalytics.exe
Size

90KB
Sample

240612-ztkykazepc
MD5

43b17dd5dad517351ffd10c390a224d0
SHA1

031e64fa48b9272adb9bf24edc9654aa91b634ec
SHA256

21b701db70362a8698ee48fd47081bf0abbec49e394ce80259e9817b7fde8335
SHA512

a1d00a857f654ce64050bcaf325edb593398f4f6ccfa4ac5e7bc87226ab459f6dce8d4c76df9287c46cef98a76eb7c8c21421b5e0f9f51642a6bda90a9ce4247
SSDEEP

1536:ddcfA/b1Lb/PH/MskwssKKKKKKKKKKKKKKKFeKS+dG1u/Ub0VkVNK:dOfQhbni3KKKKKKKKKKKKKK0+G1u/Ubi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  43b17dd5dad517351ffd10c390a224d0_NeikiAnalytics.exe
- Size
  
  90KB
- MD5
  
  43b17dd5dad517351ffd10c390a224d0
- SHA1
  
  031e64fa48b9272adb9bf24edc9654aa91b634ec
- SHA256
  
  21b701db70362a8698ee48fd47081bf0abbec49e394ce80259e9817b7fde8335
- SHA512
  
  a1d00a857f654ce64050bcaf325edb593398f4f6ccfa4ac5e7bc87226ab459f6dce8d4c76df9287c46cef98a76eb7c8c21421b5e0f9f51642a6bda90a9ce4247
- SSDEEP
  
  1536:ddcfA/b1Lb/PH/MskwssKKKKKKKKKKKKKKKFeKS+dG1u/Ub0VkVNK:dOfQhbni3KKKKKKKKKKKKKK0+G1u/Ubi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2