52b5f5503d5878707ff99bcddc981b3801faf73f37bf47a1e5d2e1204c1281ed | Triage

Sharing

Copy URL Twitter E-mail

General

Target

db448365dc159de1dcde39b77f73abf0_NeikiAnalytics.exe
Size

2.5MB
Sample

240616-gr4nsawenn
MD5

db448365dc159de1dcde39b77f73abf0
SHA1

b55dee8b5036a4deacf9ab22dc5a1eac65c7a316
SHA256

52b5f5503d5878707ff99bcddc981b3801faf73f37bf47a1e5d2e1204c1281ed
SHA512

7c5b18e8d04142f85e1cab91316d89d65e5a9231e1b6e3d447e4d85a7f60cb61ea302b42d10352b52e2bdc4da8326c9582c6046ffdbb70bc910020cde218e387
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBV9w4Sc:+R0pI/IQlUoMPdmpSpZ4r

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  db448365dc159de1dcde39b77f73abf0_NeikiAnalytics.exe
- Size
  
  2.5MB
- MD5
  
  db448365dc159de1dcde39b77f73abf0
- SHA1
  
  b55dee8b5036a4deacf9ab22dc5a1eac65c7a316
- SHA256
  
  52b5f5503d5878707ff99bcddc981b3801faf73f37bf47a1e5d2e1204c1281ed
- SHA512
  
  7c5b18e8d04142f85e1cab91316d89d65e5a9231e1b6e3d447e4d85a7f60cb61ea302b42d10352b52e2bdc4da8326c9582c6046ffdbb70bc910020cde218e387
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBV9w4Sc:+R0pI/IQlUoMPdmpSpZ4r
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2