6153543baac040ee1b213aa808ca6531ec924e813383c82d356735adff536b86 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1fb59899272f66dd2c4e742a4e8888f0_NeikiAnalytics.exe
Size

256KB
Sample

240616-3tfkmaybmn
MD5

1fb59899272f66dd2c4e742a4e8888f0
SHA1

b3ad4d489c1905cdfbbcec0955b3796e7401e54d
SHA256

6153543baac040ee1b213aa808ca6531ec924e813383c82d356735adff536b86
SHA512

a140234f3a1558cedb6ef6028cc55576c90b974f2f080169d5101fb93bcd61a5e96eb6ee614c4eedf7e43d0cb9ee2084fc17915da646c5d80c3be56b48dae66f
SSDEEP

6144:Mo0yUFPzIH3HVpaopOpHVILifyeYVDcfR:MoMPAHAHyefyeYCR

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1fb59899272f66dd2c4e742a4e8888f0_NeikiAnalytics.exe
- Size
  
  256KB
- MD5
  
  1fb59899272f66dd2c4e742a4e8888f0
- SHA1
  
  b3ad4d489c1905cdfbbcec0955b3796e7401e54d
- SHA256
  
  6153543baac040ee1b213aa808ca6531ec924e813383c82d356735adff536b86
- SHA512
  
  a140234f3a1558cedb6ef6028cc55576c90b974f2f080169d5101fb93bcd61a5e96eb6ee614c4eedf7e43d0cb9ee2084fc17915da646c5d80c3be56b48dae66f
- SSDEEP
  
  6144:Mo0yUFPzIH3HVpaopOpHVILifyeYVDcfR:MoMPAHAHyefyeYCR
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2