15d62fbd3b9a200c657c0c9e0a40b80417bfdb4985dfa2cb61256c292e7578ac | Triage

Sharing

General

Target

15d62fbd3b9a200c657c0c9e0a40b80417bfdb4985dfa2cb61256c292e7578ac_NeikiAnalytics.exe
Size

80KB
Sample

240619-25d1hazhpr
MD5

2a5e3825d113e079df63b5951c05aae0
SHA1

e17cf721d3e31c91f8b76aaaccc4bc09e90976c6
SHA256

15d62fbd3b9a200c657c0c9e0a40b80417bfdb4985dfa2cb61256c292e7578ac
SHA512

5074b1aca89d3f132ef8efd1e9821ba9010664a6b461afc7e1ce289df88d0cca8d3bbce848bfbce4ab81bd4f005e21e21b0238c0d48f9cf61a65d2162580e427
SSDEEP

1536:uyAOlT250p51GKDM2L/J9VqDlzVxyh+CbxMa:zlY0dF/J9IDlRxyhTb7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  15d62fbd3b9a200c657c0c9e0a40b80417bfdb4985dfa2cb61256c292e7578ac_NeikiAnalytics.exe
- Size
  
  80KB
- MD5
  
  2a5e3825d113e079df63b5951c05aae0
- SHA1
  
  e17cf721d3e31c91f8b76aaaccc4bc09e90976c6
- SHA256
  
  15d62fbd3b9a200c657c0c9e0a40b80417bfdb4985dfa2cb61256c292e7578ac
- SHA512
  
  5074b1aca89d3f132ef8efd1e9821ba9010664a6b461afc7e1ce289df88d0cca8d3bbce848bfbce4ab81bd4f005e21e21b0238c0d48f9cf61a65d2162580e427
- SSDEEP
  
  1536:uyAOlT250p51GKDM2L/J9VqDlzVxyh+CbxMa:zlY0dF/J9IDlRxyhTb7
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2