312160f2da8daf7248fd5fef640ff3b594a8fda1ce09b38edd9b0413db479110 | Triage

Sharing

General

Target

1770cc67ad0097e3d11a501a76f17ca0_NeikiAnalytics.exe
Size

80KB
Sample

240616-2rxwfswcpm
MD5

1770cc67ad0097e3d11a501a76f17ca0
SHA1

a58385849ec58ddfd740803e26c230c9faba5f3c
SHA256

312160f2da8daf7248fd5fef640ff3b594a8fda1ce09b38edd9b0413db479110
SHA512

44f59148f011a2a86b06075201a8201d8b4770c08f0046cc76a979297fc1f885c4c2a642d77d0aa709e457f33db53d4ad55f8fb52753b13eeecb8b7456023342
SSDEEP

1536:gxFazepvBqWkIbpPb0w3NtM4xvgzOrtHwBEEcgk2LgCYrum8SPG2:gLaqHbpP4wdtMlgVT8SL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1770cc67ad0097e3d11a501a76f17ca0_NeikiAnalytics.exe
- Size
  
  80KB
- MD5
  
  1770cc67ad0097e3d11a501a76f17ca0
- SHA1
  
  a58385849ec58ddfd740803e26c230c9faba5f3c
- SHA256
  
  312160f2da8daf7248fd5fef640ff3b594a8fda1ce09b38edd9b0413db479110
- SHA512
  
  44f59148f011a2a86b06075201a8201d8b4770c08f0046cc76a979297fc1f885c4c2a642d77d0aa709e457f33db53d4ad55f8fb52753b13eeecb8b7456023342
- SSDEEP
  
  1536:gxFazepvBqWkIbpPb0w3NtM4xvgzOrtHwBEEcgk2LgCYrum8SPG2:gLaqHbpP4wdtMlgVT8SL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2