aa4ab1093171caa6f6877d1785d3b0a1d5c19d5f757f6664ce9676583a543cde | Triage

Sharing

General

Target

1cd07c73a236031863f0ea62ef6280a0_NeikiAnalytics.exe
Size

1024KB
Sample

240616-3gatlsxepq
MD5

1cd07c73a236031863f0ea62ef6280a0
SHA1

d080f29b4f0067cee4e78d23ebbcfa4d3f7899a8
SHA256

aa4ab1093171caa6f6877d1785d3b0a1d5c19d5f757f6664ce9676583a543cde
SHA512

d5ee395e44a8c7637db292cdd0efef9202b0a8120be823e8a32736aaf54528df58180cda406c390ae248263dd074fe26d6f18e08898e56315e75671e41edff14
SSDEEP

12288:7o3wixkY660fIaDZkY660f8jTK/XhdAwlt01PBExKN4P6IfKTLR+6CwUkEoH:7SgsaDZgQjGkwlks/6HnEO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1cd07c73a236031863f0ea62ef6280a0_NeikiAnalytics.exe
- Size
  
  1024KB
- MD5
  
  1cd07c73a236031863f0ea62ef6280a0
- SHA1
  
  d080f29b4f0067cee4e78d23ebbcfa4d3f7899a8
- SHA256
  
  aa4ab1093171caa6f6877d1785d3b0a1d5c19d5f757f6664ce9676583a543cde
- SHA512
  
  d5ee395e44a8c7637db292cdd0efef9202b0a8120be823e8a32736aaf54528df58180cda406c390ae248263dd074fe26d6f18e08898e56315e75671e41edff14
- SSDEEP
  
  12288:7o3wixkY660fIaDZkY660f8jTK/XhdAwlt01PBExKN4P6IfKTLR+6CwUkEoH:7SgsaDZgQjGkwlks/6HnEO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2