5e32034b86cdeb4aa4d702031156a78d5ac27e90afae83efe400743058b28694 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5e32034b86cdeb4aa4d702031156a78d5ac27e90afae83efe400743058b28694_NeikiAnalytics.exe
Size

352KB
Sample

240624-lf5h6ayekq
MD5

5154459c02e1416b3e217e66f0078860
SHA1

751cc0125bc23bad2a48fa67f9bc08ba296fae06
SHA256

5e32034b86cdeb4aa4d702031156a78d5ac27e90afae83efe400743058b28694
SHA512

6325aaa2e8556eecc94fd2b0c1a8232f0d770c626859f2d3ace30ddc747fe6a08047a8efd12a70983dbf25ac5701a189211fcb05ae1bbeb6363f4d52dcac5aaf
SSDEEP

6144:GRQQPgsIUQcAMo0w8b3jfZoHz9iWis/j9SrJz9ieis/j9SrJz9is/j9SrJwWisp:FQPgsIUQcAMo0w8b3jfZ/sUasUqsU6sp

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5e32034b86cdeb4aa4d702031156a78d5ac27e90afae83efe400743058b28694_NeikiAnalytics.exe
- Size
  
  352KB
- MD5
  
  5154459c02e1416b3e217e66f0078860
- SHA1
  
  751cc0125bc23bad2a48fa67f9bc08ba296fae06
- SHA256
  
  5e32034b86cdeb4aa4d702031156a78d5ac27e90afae83efe400743058b28694
- SHA512
  
  6325aaa2e8556eecc94fd2b0c1a8232f0d770c626859f2d3ace30ddc747fe6a08047a8efd12a70983dbf25ac5701a189211fcb05ae1bbeb6363f4d52dcac5aaf
- SSDEEP
  
  6144:GRQQPgsIUQcAMo0w8b3jfZoHz9iWis/j9SrJz9ieis/j9SrJz9is/j9SrJwWisp:FQPgsIUQcAMo0w8b3jfZ/sUasUqsU6sp
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2