5e09ab32a8a5d04919a31e185df0c936184d0fae63a76415581db040b0f88428 | Triage

Sharing

General

Target

5e09ab32a8a5d04919a31e185df0c936184d0fae63a76415581db040b0f88428_NeikiAnalytics.exe
Size

4.1MB
Sample

240620-nwensazdjp
MD5

43065b701908d6ff3097fefa7a7dd7f0
SHA1

99b522d4d60d75e0bf2c835d4b294c721a34bc73
SHA256

5e09ab32a8a5d04919a31e185df0c936184d0fae63a76415581db040b0f88428
SHA512

ffb9697678105de12f84bffbfde1a3f2f03f895bc01da42d95c7d841ab8fdc4e69c8c13e83a492c9acdc2d38f9f76bcc76e524cc0b01b246cb8fc0c4653a7c2c
SSDEEP

98304:+R0pI/IQlUoMPdmpSpb4ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdm45n9klRKN41v

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5e09ab32a8a5d04919a31e185df0c936184d0fae63a76415581db040b0f88428_NeikiAnalytics.exe
- Size
  
  4.1MB
- MD5
  
  43065b701908d6ff3097fefa7a7dd7f0
- SHA1
  
  99b522d4d60d75e0bf2c835d4b294c721a34bc73
- SHA256
  
  5e09ab32a8a5d04919a31e185df0c936184d0fae63a76415581db040b0f88428
- SHA512
  
  ffb9697678105de12f84bffbfde1a3f2f03f895bc01da42d95c7d841ab8fdc4e69c8c13e83a492c9acdc2d38f9f76bcc76e524cc0b01b246cb8fc0c4653a7c2c
- SSDEEP
  
  98304:+R0pI/IQlUoMPdmpSpb4ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdm45n9klRKN41v
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2