365115096e9c684222767cc88a49c84471c202e1cc77d64fd6ee4d3f00c02c07 | Triage

Sharing

General

Target

365115096e9c684222767cc88a49c84471c202e1cc77d64fd6ee4d3f00c02c07_NeikiAnalytics.exe
Size

94KB
Sample

240620-fjb35avalp
MD5

bbd0e7f7e9446300911b03774b1ffe40
SHA1

fdd1359ac8888ff76150c5d16ed951ca1832f796
SHA256

365115096e9c684222767cc88a49c84471c202e1cc77d64fd6ee4d3f00c02c07
SHA512

22c2f2a8f81fdbfe1df49dc4de48156b9028850637b9e3df1e07381cfd204a78295c51f85f1bbd1b55c249799c1f98504e2713d1aeeac4b7de28c7cfc1fa799b
SSDEEP

1536:LIhJKyRc7Y1dI4C5xlXz52W3QHoRk2L0AaIZTJ+7LhkiB0MPiKeEAgv:LMKrAYx9EW3CwLaMU7uihJ5v

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  365115096e9c684222767cc88a49c84471c202e1cc77d64fd6ee4d3f00c02c07_NeikiAnalytics.exe
- Size
  
  94KB
- MD5
  
  bbd0e7f7e9446300911b03774b1ffe40
- SHA1
  
  fdd1359ac8888ff76150c5d16ed951ca1832f796
- SHA256
  
  365115096e9c684222767cc88a49c84471c202e1cc77d64fd6ee4d3f00c02c07
- SHA512
  
  22c2f2a8f81fdbfe1df49dc4de48156b9028850637b9e3df1e07381cfd204a78295c51f85f1bbd1b55c249799c1f98504e2713d1aeeac4b7de28c7cfc1fa799b
- SSDEEP
  
  1536:LIhJKyRc7Y1dI4C5xlXz52W3QHoRk2L0AaIZTJ+7LhkiB0MPiKeEAgv:LMKrAYx9EW3CwLaMU7uihJ5v
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2