4f2f7a4c95f64d27406fe492ee83f5375fc9e5bc878ad31df0548b2aabcd1107 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4f2f7a4c95f64d27406fe492ee83f5375fc9e5bc878ad31df0548b2aabcd1107_NeikiAnalytics.exe
Size

94KB
Sample

240620-k85tyszckc
MD5

606aade1c97650f01ece2607ed3039b0
SHA1

82748271ab74625ae135dae58722b1e6cd48ba68
SHA256

4f2f7a4c95f64d27406fe492ee83f5375fc9e5bc878ad31df0548b2aabcd1107
SHA512

51a18688cf8564f0ab173c24306eb74954a2ffe378f472ba11378e4c1d1579a57c29d52851350d9e832c038feab7045aaf46d1d020637e6e8b0520d31f6090e7
SSDEEP

1536:dR6jqbJ9jIqyyt/hofR0TZfti7l2L9aIZTJ+7LhkiB0MPiKeEAgv:doqbP2mafR0lg7W9aMU7uihJ5v

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  4f2f7a4c95f64d27406fe492ee83f5375fc9e5bc878ad31df0548b2aabcd1107_NeikiAnalytics.exe
- Size
  
  94KB
- MD5
  
  606aade1c97650f01ece2607ed3039b0
- SHA1
  
  82748271ab74625ae135dae58722b1e6cd48ba68
- SHA256
  
  4f2f7a4c95f64d27406fe492ee83f5375fc9e5bc878ad31df0548b2aabcd1107
- SHA512
  
  51a18688cf8564f0ab173c24306eb74954a2ffe378f472ba11378e4c1d1579a57c29d52851350d9e832c038feab7045aaf46d1d020637e6e8b0520d31f6090e7
- SSDEEP
  
  1536:dR6jqbJ9jIqyyt/hofR0TZfti7l2L9aIZTJ+7LhkiB0MPiKeEAgv:doqbP2mafR0lg7W9aMU7uihJ5v
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2