4d35a51265d76705f12d9bc9e792715b722bacd4bc7723e3b7e540ebb2f7ef14 | Triage

Sharing

General

Target

4d35a51265d76705f12d9bc9e792715b722bacd4bc7723e3b7e540ebb2f7ef14_NeikiAnalytics.exe
Size

148KB
Sample

240620-kvt6astamq
MD5

eab5e3a24dbc75c9439d845e672819c0
SHA1

91e465362e1e6ba1fc1bd4c9efcf189f5bc1a431
SHA256

4d35a51265d76705f12d9bc9e792715b722bacd4bc7723e3b7e540ebb2f7ef14
SHA512

d8d14a61d0cfa5c7ff6c04ab9cc8101efd925e3295f9ac9ca7e71ecd02e525a654bf9e526867ff15d812a8e66717c2b932cfd5ac91d3c991debb48750c0e72f5
SSDEEP

3072:U6NfcojsHXHY5OdzOdjKtlDoNQQ9wlHOdj+UCRQKOdj+U:U6NUAs3HKOdzOdkOdezOd

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  4d35a51265d76705f12d9bc9e792715b722bacd4bc7723e3b7e540ebb2f7ef14_NeikiAnalytics.exe
- Size
  
  148KB
- MD5
  
  eab5e3a24dbc75c9439d845e672819c0
- SHA1
  
  91e465362e1e6ba1fc1bd4c9efcf189f5bc1a431
- SHA256
  
  4d35a51265d76705f12d9bc9e792715b722bacd4bc7723e3b7e540ebb2f7ef14
- SHA512
  
  d8d14a61d0cfa5c7ff6c04ab9cc8101efd925e3295f9ac9ca7e71ecd02e525a654bf9e526867ff15d812a8e66717c2b932cfd5ac91d3c991debb48750c0e72f5
- SSDEEP
  
  3072:U6NfcojsHXHY5OdzOdjKtlDoNQQ9wlHOdj+UCRQKOdj+U:U6NUAs3HKOdzOdkOdezOd
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2