2001b52fb91a117da5e97118e4f92a13271b50d287f630e586d99cd7c8788f7d | Triage

Sharing

General

Target

2001b52fb91a117da5e97118e4f92a13271b50d287f630e586d99cd7c8788f7d_NeikiAnalytics.exe
Size

128KB
Sample

240620-a7z7zatgmr
MD5

1141a759c5cd418a1d632913fc5c8820
SHA1

35ab669697b3090f69eab002d969475712f7b2bf
SHA256

2001b52fb91a117da5e97118e4f92a13271b50d287f630e586d99cd7c8788f7d
SHA512

954ff1cf37b1d13c71b7e0bd0af98332b67ebbfaec280aa97cd5ad827fce1eda3d443cb5e11c4d2c77dd0c4173602a653cfd6a0f992574205b6cdb47e572f588
SSDEEP

3072:Ow3GWQmhMjbIf37Lf+SYZ1919osJUVqnr3FQo7fnEBctcp:1GvFj0v7Lf+Br3FF7fPtc

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2001b52fb91a117da5e97118e4f92a13271b50d287f630e586d99cd7c8788f7d_NeikiAnalytics.exe
- Size
  
  128KB
- MD5
  
  1141a759c5cd418a1d632913fc5c8820
- SHA1
  
  35ab669697b3090f69eab002d969475712f7b2bf
- SHA256
  
  2001b52fb91a117da5e97118e4f92a13271b50d287f630e586d99cd7c8788f7d
- SHA512
  
  954ff1cf37b1d13c71b7e0bd0af98332b67ebbfaec280aa97cd5ad827fce1eda3d443cb5e11c4d2c77dd0c4173602a653cfd6a0f992574205b6cdb47e572f588
- SSDEEP
  
  3072:Ow3GWQmhMjbIf37Lf+SYZ1919osJUVqnr3FQo7fnEBctcp:1GvFj0v7Lf+Br3FF7fPtc
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2