018622e4f1d0db890d1a296324aea8cba3a80b4733af00399c8791eb433ca973 | Triage

Sharing

General

Target

018622e4f1d0db890d1a296324aea8cba3a80b4733af00399c8791eb433ca973_NeikiAnalytics.exe
Size

96KB
Sample

240619-wrdjxszgpm
MD5

438201ebbb94256a3be566e18dec4a10
SHA1

cb435163632db4c3c494185cee05eb0c91e1aba2
SHA256

018622e4f1d0db890d1a296324aea8cba3a80b4733af00399c8791eb433ca973
SHA512

cab674b7c2e71a8d85d5e2fbf6cba1fc719c80743850127387d483da5d75dc0b73797096d86834cac1c01e885e62ccf400c101305dd6cc489555daf02ace8c43
SSDEEP

1536:faK6UddXXuH9eQZfYhfxCKP6y4O7zCRrmYduV9jojTIvjrH:f16UddXXW9HAhfxZPqRKYd69jc0vf

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  018622e4f1d0db890d1a296324aea8cba3a80b4733af00399c8791eb433ca973_NeikiAnalytics.exe
- Size
  
  96KB
- MD5
  
  438201ebbb94256a3be566e18dec4a10
- SHA1
  
  cb435163632db4c3c494185cee05eb0c91e1aba2
- SHA256
  
  018622e4f1d0db890d1a296324aea8cba3a80b4733af00399c8791eb433ca973
- SHA512
  
  cab674b7c2e71a8d85d5e2fbf6cba1fc719c80743850127387d483da5d75dc0b73797096d86834cac1c01e885e62ccf400c101305dd6cc489555daf02ace8c43
- SSDEEP
  
  1536:faK6UddXXuH9eQZfYhfxCKP6y4O7zCRrmYduV9jojTIvjrH:f16UddXXW9HAhfxZPqRKYd69jc0vf
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2