38fa3bddb9b2e5b3ce65ceb6a7c448041aad637d9c6e4e1b3772468c2db8bd25 | Triage

Sharing

General

Target

38fa3bddb9b2e5b3ce65ceb6a7c448041aad637d9c6e4e1b3772468c2db8bd25_NeikiAnalytics.exe
Size

2.7MB
Sample

240624-eba1eswfpd
MD5

a1f45f168565cc82ad08674939f9dfd0
SHA1

be55c53f564ce3b146974aaf0c70cb264c178cae
SHA256

38fa3bddb9b2e5b3ce65ceb6a7c448041aad637d9c6e4e1b3772468c2db8bd25
SHA512

46153ad49a3510db99ee345b9c0da06ccb5af7f26075837bc7ce56dddbb2648ceefc42fa910a12e015326bd5fbbe6a84d395f3dc4f94047ac1e972ff2a69242f
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LB29w4Sx:+R0pI/IQlUoMPdmpSp44

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  38fa3bddb9b2e5b3ce65ceb6a7c448041aad637d9c6e4e1b3772468c2db8bd25_NeikiAnalytics.exe
- Size
  
  2.7MB
- MD5
  
  a1f45f168565cc82ad08674939f9dfd0
- SHA1
  
  be55c53f564ce3b146974aaf0c70cb264c178cae
- SHA256
  
  38fa3bddb9b2e5b3ce65ceb6a7c448041aad637d9c6e4e1b3772468c2db8bd25
- SHA512
  
  46153ad49a3510db99ee345b9c0da06ccb5af7f26075837bc7ce56dddbb2648ceefc42fa910a12e015326bd5fbbe6a84d395f3dc4f94047ac1e972ff2a69242f
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LB29w4Sx:+R0pI/IQlUoMPdmpSp44
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2