92c26c96ff3a7e88f703ca4b3b3792e7ccc138b3d7f651ecb220e6b02e01942e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9729362e5fd361aae426f8112b11d410_NeikiAnalytics.exe
Size

248KB
Sample

240614-bwg3pazdlf
MD5

9729362e5fd361aae426f8112b11d410
SHA1

7dcb1bdcda74a73c901d7fc9fa7984a3ff1cfc67
SHA256

92c26c96ff3a7e88f703ca4b3b3792e7ccc138b3d7f651ecb220e6b02e01942e
SHA512

3359b20d0af8605ddc86d0217aef79f3151c2e6c8788a8fd29f14ca0e7c8d41b6a50ec2f2333fe1d02e078ac7165715deabfdaa085d298a50f0e1ae5512f4742
SSDEEP

1536:yw7LT4UtKGc/8ncwBCxJUjl5HH1wHVNtBqqGBABiovRXlhn4SPIdVHReHXc/B07I:ywHs8735H1wHVAURfE+HXAB0kCySYo0B

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  9729362e5fd361aae426f8112b11d410_NeikiAnalytics.exe
- Size
  
  248KB
- MD5
  
  9729362e5fd361aae426f8112b11d410
- SHA1
  
  7dcb1bdcda74a73c901d7fc9fa7984a3ff1cfc67
- SHA256
  
  92c26c96ff3a7e88f703ca4b3b3792e7ccc138b3d7f651ecb220e6b02e01942e
- SHA512
  
  3359b20d0af8605ddc86d0217aef79f3151c2e6c8788a8fd29f14ca0e7c8d41b6a50ec2f2333fe1d02e078ac7165715deabfdaa085d298a50f0e1ae5512f4742
- SSDEEP
  
  1536:yw7LT4UtKGc/8ncwBCxJUjl5HH1wHVNtBqqGBABiovRXlhn4SPIdVHReHXc/B07I:ywHs8735H1wHVAURfE+HXAB0kCySYo0B
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2