6f4dfacceeb5a68693b22c254c032a7d4e58899821c41a3d43bfe7bc1fcf1316 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

295b63153507ce4a92746b8f8e5ed300_NeikiAnalytics.exe
Size

64KB
Sample

240617-bbzr1a1cjq
MD5

295b63153507ce4a92746b8f8e5ed300
SHA1

3623c0be128bfeebcdfbd572dd3d156533581768
SHA256

6f4dfacceeb5a68693b22c254c032a7d4e58899821c41a3d43bfe7bc1fcf1316
SHA512

321f98a77ae59b156b0b13daaa68527714230419c47850e1fed85a1d3e9595388e51dd65f9842ff39bbb19548ed66cd4363cace24688c60a144bdbd084c325ec
SSDEEP

768:RwaSgru0ELT1EORmhWp51QZZ+Y3re9EWJzWuYyyQNc/Atsl2GWcJ/QEsBvNgjFdu:Rwanrn0T7mhc5sZ1TJQsFvl7ly5VP

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  295b63153507ce4a92746b8f8e5ed300_NeikiAnalytics.exe
- Size
  
  64KB
- MD5
  
  295b63153507ce4a92746b8f8e5ed300
- SHA1
  
  3623c0be128bfeebcdfbd572dd3d156533581768
- SHA256
  
  6f4dfacceeb5a68693b22c254c032a7d4e58899821c41a3d43bfe7bc1fcf1316
- SHA512
  
  321f98a77ae59b156b0b13daaa68527714230419c47850e1fed85a1d3e9595388e51dd65f9842ff39bbb19548ed66cd4363cace24688c60a144bdbd084c325ec
- SSDEEP
  
  768:RwaSgru0ELT1EORmhWp51QZZ+Y3re9EWJzWuYyyQNc/Atsl2GWcJ/QEsBvNgjFdu:Rwanrn0T7mhc5sZ1TJQsFvl7ly5VP
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2