112870a9d2dee4f579f108aa802d361999cbf864878a34799f48e36fe80ab6e4 | Triage

Sharing

General

Target

112870a9d2dee4f579f108aa802d361999cbf864878a34799f48e36fe80ab6e4_NeikiAnalytics.exe
Size

240KB
Sample

240624-3hpzxs1emp
MD5

be9f3de269cfe60bbd1089a258c46840
SHA1

27dd7388ed0013b154909c63c51febedea8a6272
SHA256

112870a9d2dee4f579f108aa802d361999cbf864878a34799f48e36fe80ab6e4
SHA512

16472d3322bacc53292ac5919a3d467771f73e037f05fdf5fbfc52c92e85d7588a602321484039f9b9e6def1e0e11af36192e3124574ab5f7ac47c1eb7558106
SSDEEP

6144:Ibg9F60y+76GyZ6YugQdjGG1wsKm6eBgdQbkoKTBEA:2g36PGyXu1jGG1wsGeBgRTGA

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  112870a9d2dee4f579f108aa802d361999cbf864878a34799f48e36fe80ab6e4_NeikiAnalytics.exe
- Size
  
  240KB
- MD5
  
  be9f3de269cfe60bbd1089a258c46840
- SHA1
  
  27dd7388ed0013b154909c63c51febedea8a6272
- SHA256
  
  112870a9d2dee4f579f108aa802d361999cbf864878a34799f48e36fe80ab6e4
- SHA512
  
  16472d3322bacc53292ac5919a3d467771f73e037f05fdf5fbfc52c92e85d7588a602321484039f9b9e6def1e0e11af36192e3124574ab5f7ac47c1eb7558106
- SSDEEP
  
  6144:Ibg9F60y+76GyZ6YugQdjGG1wsKm6eBgdQbkoKTBEA:2g36PGyXu1jGG1wsGeBgRTGA
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2