7014d9fb7cb0f346a2f98d230ef0220cc28a24143c5760eba3a71b68ce69991c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3af9cb3b574189e2c045b8f23a3eea60_NeikiAnalytics.exe
Size

259KB
Sample

240617-dfbxva1dke
MD5

3af9cb3b574189e2c045b8f23a3eea60
SHA1

5be2f5d4282ae0d41681bff99430145028a8c248
SHA256

7014d9fb7cb0f346a2f98d230ef0220cc28a24143c5760eba3a71b68ce69991c
SHA512

4fa908bb420b1ea5f4838b591e62af2b73be46e13534248418d15b88f469d715ede6c7499e251be04278efd8f10e47dbcabbb7aa8539dbcc3dc4970d69724691
SSDEEP

3072:lwvHPWcBWqv1BHPSkJ9IDlRxyhTbhgu+tAcrzkAqSxYIhOmTsF93UYfwC6GIouta:lwvHTWCjvSksDshsrYIcm4FmowdHoSa

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3af9cb3b574189e2c045b8f23a3eea60_NeikiAnalytics.exe
- Size
  
  259KB
- MD5
  
  3af9cb3b574189e2c045b8f23a3eea60
- SHA1
  
  5be2f5d4282ae0d41681bff99430145028a8c248
- SHA256
  
  7014d9fb7cb0f346a2f98d230ef0220cc28a24143c5760eba3a71b68ce69991c
- SHA512
  
  4fa908bb420b1ea5f4838b591e62af2b73be46e13534248418d15b88f469d715ede6c7499e251be04278efd8f10e47dbcabbb7aa8539dbcc3dc4970d69724691
- SSDEEP
  
  3072:lwvHPWcBWqv1BHPSkJ9IDlRxyhTbhgu+tAcrzkAqSxYIhOmTsF93UYfwC6GIouta:lwvHTWCjvSksDshsrYIcm4FmowdHoSa
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2