ec44f092090f2ba2d210353d8e9af0b9b34c0d5b1a37981299f1bbccfe744045 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a0a993bff6907805182d23fb0aba8ad0_NeikiAnalytics.exe
Size

272KB
Sample

240614-ek1x7sybqn
MD5

a0a993bff6907805182d23fb0aba8ad0
SHA1

22ba965d8d0d2194a0e7f9f7619bbc072ef6ce01
SHA256

ec44f092090f2ba2d210353d8e9af0b9b34c0d5b1a37981299f1bbccfe744045
SHA512

15dcfa0125e1307e9af97389485a31acaf75b21253b8aeb5d271fb7867792fabc2826d6d9bdaa66a877a67823781562be53bae6165b4ab11f9c29cd4fac0abae
SSDEEP

6144:WmiG/+vx3lH39bSR0xZKL2bWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQc/YRuEuT:p/izbSwwL2bWGRdA6sQhPbWGRdA6sQxW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a0a993bff6907805182d23fb0aba8ad0_NeikiAnalytics.exe
- Size
  
  272KB
- MD5
  
  a0a993bff6907805182d23fb0aba8ad0
- SHA1
  
  22ba965d8d0d2194a0e7f9f7619bbc072ef6ce01
- SHA256
  
  ec44f092090f2ba2d210353d8e9af0b9b34c0d5b1a37981299f1bbccfe744045
- SHA512
  
  15dcfa0125e1307e9af97389485a31acaf75b21253b8aeb5d271fb7867792fabc2826d6d9bdaa66a877a67823781562be53bae6165b4ab11f9c29cd4fac0abae
- SSDEEP
  
  6144:WmiG/+vx3lH39bSR0xZKL2bWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQc/YRuEuT:p/izbSwwL2bWGRdA6sQhPbWGRdA6sQxW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2