3f9f16bf3a3e11cdcea613e2b16a97296563e261ad8423d53558924010309521 | Triage

Sharing

General

Target

3f9f16bf3a3e11cdcea613e2b16a97296563e261ad8423d53558924010309521_NeikiAnalytics.exe
Size

96KB
Sample

240624-fglvjs1clp
MD5

9bc7c68a371a5aa9f722a76646d00720
SHA1

1a9ad24b3655f2e5c38334368ddffe40e60f3b34
SHA256

3f9f16bf3a3e11cdcea613e2b16a97296563e261ad8423d53558924010309521
SHA512

57b6b318e58a29de2314ca8c0a4334c315d115318fea06ad5dfa59f989b7676b5963c731f953eb40b279294450bf74f24881374ac109ff46f46a45001229e8b6
SSDEEP

1536:iBkg6oOs5OpFd/1DGTohhGqckqTE8BOJAPgnDNBrcN4i6tBYuR3PlNPMAZ:iOZDnUfEJAPgxed6BYudlNPMAZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3f9f16bf3a3e11cdcea613e2b16a97296563e261ad8423d53558924010309521_NeikiAnalytics.exe
- Size
  
  96KB
- MD5
  
  9bc7c68a371a5aa9f722a76646d00720
- SHA1
  
  1a9ad24b3655f2e5c38334368ddffe40e60f3b34
- SHA256
  
  3f9f16bf3a3e11cdcea613e2b16a97296563e261ad8423d53558924010309521
- SHA512
  
  57b6b318e58a29de2314ca8c0a4334c315d115318fea06ad5dfa59f989b7676b5963c731f953eb40b279294450bf74f24881374ac109ff46f46a45001229e8b6
- SSDEEP
  
  1536:iBkg6oOs5OpFd/1DGTohhGqckqTE8BOJAPgnDNBrcN4i6tBYuR3PlNPMAZ:iOZDnUfEJAPgxed6BYudlNPMAZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2