639d02f47f81d80f36258292a054c2d69b26d9fc2ca45a19bf005811493b7605 | Triage

Sharing

General

Target

12bd4e527e2ecd398051f971df39dc60_NeikiAnalytics.exe
Size

94KB
Sample

240616-17a6ysvclr
MD5

12bd4e527e2ecd398051f971df39dc60
SHA1

efaad9273da06f525306c8a3b7ab0574da6cd792
SHA256

639d02f47f81d80f36258292a054c2d69b26d9fc2ca45a19bf005811493b7605
SHA512

5e254ca5b7a3f523fbaa1390c0d48e62a96c8d8d82b1ca123fcd06c5c65a5abc658a999aeb0dc312ee19da2bb191da7050df026739de8ce39d083fd7f7cd56c0
SSDEEP

1536:zDQy2Q+6oGwuKl4xiGz409xxl9enTI22LbaIZTJ+7LhkiB0MPiKeEAgv:zW1Gwfl4AGD9xCIbbaMU7uihJ5v

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  12bd4e527e2ecd398051f971df39dc60_NeikiAnalytics.exe
- Size
  
  94KB
- MD5
  
  12bd4e527e2ecd398051f971df39dc60
- SHA1
  
  efaad9273da06f525306c8a3b7ab0574da6cd792
- SHA256
  
  639d02f47f81d80f36258292a054c2d69b26d9fc2ca45a19bf005811493b7605
- SHA512
  
  5e254ca5b7a3f523fbaa1390c0d48e62a96c8d8d82b1ca123fcd06c5c65a5abc658a999aeb0dc312ee19da2bb191da7050df026739de8ce39d083fd7f7cd56c0
- SSDEEP
  
  1536:zDQy2Q+6oGwuKl4xiGz409xxl9enTI22LbaIZTJ+7LhkiB0MPiKeEAgv:zW1Gwfl4AGD9xCIbbaMU7uihJ5v
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2