11faaadaa5d621aeea8ca22b7be3ac3dc050da25b239eb5e2be4bd37fa40fc2b | Triage

Sharing

General

Target

221fb124d99db121484db7e82e0fc410_NeikiAnalytics.exe
Size

344KB
Sample

240617-adswssygll
MD5

221fb124d99db121484db7e82e0fc410
SHA1

c8b2587dd758f0f68c7e0ee02514befd290e9167
SHA256

11faaadaa5d621aeea8ca22b7be3ac3dc050da25b239eb5e2be4bd37fa40fc2b
SHA512

7288d74faaebb5bf9d3c34015e92f49015f7b27e5b396bd1446c6a44e156e7dbfdc03c6a5dac3fa6fa5f5009e10f398912bcb833f83a5fa4a0c3869304782fba
SSDEEP

6144:VyWhpdzBCpX2/mnbzvdLaD6OkPgl6bmIjlQFn:Vyopd9CpXImbzQD6OkPgl6bmIjKn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  221fb124d99db121484db7e82e0fc410_NeikiAnalytics.exe
- Size
  
  344KB
- MD5
  
  221fb124d99db121484db7e82e0fc410
- SHA1
  
  c8b2587dd758f0f68c7e0ee02514befd290e9167
- SHA256
  
  11faaadaa5d621aeea8ca22b7be3ac3dc050da25b239eb5e2be4bd37fa40fc2b
- SHA512
  
  7288d74faaebb5bf9d3c34015e92f49015f7b27e5b396bd1446c6a44e156e7dbfdc03c6a5dac3fa6fa5f5009e10f398912bcb833f83a5fa4a0c3869304782fba
- SSDEEP
  
  6144:VyWhpdzBCpX2/mnbzvdLaD6OkPgl6bmIjlQFn:Vyopd9CpXImbzQD6OkPgl6bmIjKn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2