4b1d4203365a54f0984a5c5eabad28ac1821d633d7bb4c3adf805ff917619656 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1ce34fc8ef82b9e2f2f2cf08e37518a0_NeikiAnalytics.exe
Size

80KB
Sample

240616-3gms6sxeqq
MD5

1ce34fc8ef82b9e2f2f2cf08e37518a0
SHA1

5b0d4b4915c2a1f5690ea0b416ca1d8d364f2978
SHA256

4b1d4203365a54f0984a5c5eabad28ac1821d633d7bb4c3adf805ff917619656
SHA512

f5fea068341f1ee631a7c3f782b29e4e1400b3d2dcc1e4d04bb402f4c0af442cde2dc8c5ca040c39161245e50b1c4b156c54e324a0b0b6657404dd2a7a770bda
SSDEEP

1536:2vcmZ7EhfsMhPhek5rk50rlpF0yUpljZ2LWaIZTJ+7LhkiB0:2JyfsgP6EUpluWaMU7ui

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1ce34fc8ef82b9e2f2f2cf08e37518a0_NeikiAnalytics.exe
- Size
  
  80KB
- MD5
  
  1ce34fc8ef82b9e2f2f2cf08e37518a0
- SHA1
  
  5b0d4b4915c2a1f5690ea0b416ca1d8d364f2978
- SHA256
  
  4b1d4203365a54f0984a5c5eabad28ac1821d633d7bb4c3adf805ff917619656
- SHA512
  
  f5fea068341f1ee631a7c3f782b29e4e1400b3d2dcc1e4d04bb402f4c0af442cde2dc8c5ca040c39161245e50b1c4b156c54e324a0b0b6657404dd2a7a770bda
- SSDEEP
  
  1536:2vcmZ7EhfsMhPhek5rk50rlpF0yUpljZ2LWaIZTJ+7LhkiB0:2JyfsgP6EUpluWaMU7ui
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2