5f6a032a8a8fc6940730dddc1b6eb1f4659e1d1e44118a40abb4a27e29ff0b67 | Triage

Sharing

General

Target

5f6a032a8a8fc6940730dddc1b6eb1f4659e1d1e44118a40abb4a27e29ff0b67_NeikiAnalytics.exe
Size

94KB
Sample

240620-n5ep5szgnn
MD5

3a02bfe08e97642597f3a1bb913eed40
SHA1

8966e9e7f662c683556e15e3fbe68a89e6addfa1
SHA256

5f6a032a8a8fc6940730dddc1b6eb1f4659e1d1e44118a40abb4a27e29ff0b67
SHA512

240a53843c7764a204e86ea822c57accf23a793e409d145e7d418c7a575025af6f2f857f8c4e195e8bafec195ae8480b7bbb3a3123b19c800bc79ae4a20aada9
SSDEEP

1536:bjgtrsMPjDFQDdYoqU7Ilf1ecUGGkAfGm+UwT2LYlaIZTJ+7LhkiB0MPiKeEAgv:Q1jDF+dY1UANecUVxwwcaMU7uihJ5v

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5f6a032a8a8fc6940730dddc1b6eb1f4659e1d1e44118a40abb4a27e29ff0b67_NeikiAnalytics.exe
- Size
  
  94KB
- MD5
  
  3a02bfe08e97642597f3a1bb913eed40
- SHA1
  
  8966e9e7f662c683556e15e3fbe68a89e6addfa1
- SHA256
  
  5f6a032a8a8fc6940730dddc1b6eb1f4659e1d1e44118a40abb4a27e29ff0b67
- SHA512
  
  240a53843c7764a204e86ea822c57accf23a793e409d145e7d418c7a575025af6f2f857f8c4e195e8bafec195ae8480b7bbb3a3123b19c800bc79ae4a20aada9
- SSDEEP
  
  1536:bjgtrsMPjDFQDdYoqU7Ilf1ecUGGkAfGm+UwT2LYlaIZTJ+7LhkiB0MPiKeEAgv:Q1jDF+dY1UANecUVxwwcaMU7uihJ5v
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2