b8ae8a3712a9e96059a4805efca7b643e0f5627261f51041775f23e5a94fdc98 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

84591fe4c2030f1cf7b779bafc631e60_NeikiAnalytics.exe
Size

696KB
Sample

240613-y9e7kszbjc
MD5

84591fe4c2030f1cf7b779bafc631e60
SHA1

9a3e8b947497c03007c286e361877b143fdfdbc6
SHA256

b8ae8a3712a9e96059a4805efca7b643e0f5627261f51041775f23e5a94fdc98
SHA512

fa5fac43930eac0dc644618cd709ed11ccd5d42077a226c00261a9ed68d0b733330ee0ab254cc6f3e6a2dc15431442d52212258029a9147feb807668c2d0d199
SSDEEP

6144:zi05kH9OyU2uv5SRf/FWgFgtBgqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukT4:GrHGPv5Smpt6DmUWuVZkxikdXcq

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  84591fe4c2030f1cf7b779bafc631e60_NeikiAnalytics.exe
- Size
  
  696KB
- MD5
  
  84591fe4c2030f1cf7b779bafc631e60
- SHA1
  
  9a3e8b947497c03007c286e361877b143fdfdbc6
- SHA256
  
  b8ae8a3712a9e96059a4805efca7b643e0f5627261f51041775f23e5a94fdc98
- SHA512
  
  fa5fac43930eac0dc644618cd709ed11ccd5d42077a226c00261a9ed68d0b733330ee0ab254cc6f3e6a2dc15431442d52212258029a9147feb807668c2d0d199
- SSDEEP
  
  6144:zi05kH9OyU2uv5SRf/FWgFgtBgqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukT4:GrHGPv5Smpt6DmUWuVZkxikdXcq
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2