98071e79afb3aec7bd4d67689a5863340eff5247f6341240bb410b0b4eafbab4 | Triage

Sharing

General

Target

d1bca259dc0bbb60be78d3e874b73250_NeikiAnalytics.exe
Size

60KB
Sample

240616-d2dcssxgle
MD5

d1bca259dc0bbb60be78d3e874b73250
SHA1

32f64033b4094e2f9e3f6a5460e559a5791f73b8
SHA256

98071e79afb3aec7bd4d67689a5863340eff5247f6341240bb410b0b4eafbab4
SHA512

2d6f45e93621a876951e0e6a9b46a50e125d1aa086e1ccf4f40aca026a4ac547cf1160a2aaaa14e34445a6ea5737ae597b31263462e36ad0b8744689f60bf576
SSDEEP

768:DoqeaOYYwT/WtnrGzxNNjdaz5/OumM7dWcEvTzN4iPVWTqN/1H5cCB+XdnhMl/XZ:DALYTLWJipYz5/T3UvpWUpB86l1r

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d1bca259dc0bbb60be78d3e874b73250_NeikiAnalytics.exe
- Size
  
  60KB
- MD5
  
  d1bca259dc0bbb60be78d3e874b73250
- SHA1
  
  32f64033b4094e2f9e3f6a5460e559a5791f73b8
- SHA256
  
  98071e79afb3aec7bd4d67689a5863340eff5247f6341240bb410b0b4eafbab4
- SHA512
  
  2d6f45e93621a876951e0e6a9b46a50e125d1aa086e1ccf4f40aca026a4ac547cf1160a2aaaa14e34445a6ea5737ae597b31263462e36ad0b8744689f60bf576
- SSDEEP
  
  768:DoqeaOYYwT/WtnrGzxNNjdaz5/OumM7dWcEvTzN4iPVWTqN/1H5cCB+XdnhMl/XZ:DALYTLWJipYz5/T3UvpWUpB86l1r
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2