d6071e18ccce686d9a7e2d21fea4acef9503e6371d65836865d68aba55acbf37 | Triage

Sharing

General

Target

86dd2d6cb2e33bdc73daf4da93c7d620_NeikiAnalytics.exe
Size

94KB
Sample

240617-nwfwvaygqb
MD5

86dd2d6cb2e33bdc73daf4da93c7d620
SHA1

3adf717d6a3825e9fc971c4e4208629ff6176172
SHA256

d6071e18ccce686d9a7e2d21fea4acef9503e6371d65836865d68aba55acbf37
SHA512

474e7f053579710e1afd851dd5fc4a7024a72b3be8d16f02fe7cad70751a7936be376a6e9b5abbee5eb7f1433a839e6d8022b107f01b91d2d479959bf7ccc719
SSDEEP

1536:3n3a+GgmBBI7AATrEboPuHgT8daAIrPQ2LwaIZTJ+7LhkiB0MPiKeEAgv:X3a+GHBI7ZTrEcPuHgT8dvwwaMU7uihX

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  86dd2d6cb2e33bdc73daf4da93c7d620_NeikiAnalytics.exe
- Size
  
  94KB
- MD5
  
  86dd2d6cb2e33bdc73daf4da93c7d620
- SHA1
  
  3adf717d6a3825e9fc971c4e4208629ff6176172
- SHA256
  
  d6071e18ccce686d9a7e2d21fea4acef9503e6371d65836865d68aba55acbf37
- SHA512
  
  474e7f053579710e1afd851dd5fc4a7024a72b3be8d16f02fe7cad70751a7936be376a6e9b5abbee5eb7f1433a839e6d8022b107f01b91d2d479959bf7ccc719
- SSDEEP
  
  1536:3n3a+GgmBBI7AATrEboPuHgT8daAIrPQ2LwaIZTJ+7LhkiB0MPiKeEAgv:X3a+GHBI7ZTrEcPuHgT8dvwwaMU7uihX
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2