646355bc54c0bf1680cd8206a5e1ecfa68067dc7cafe0452d44247d82dc8337e | Triage

Sharing

General

Target

646355bc54c0bf1680cd8206a5e1ecfa68067dc7cafe0452d44247d82dc8337e_NeikiAnalytics.exe
Size

167KB
Sample

240624-mg4hxsxdqg
MD5

0840843d6f1bf862e59f067897ce68a0
SHA1

8bbc534e537dbf973d2a94ced384b060330c1f60
SHA256

646355bc54c0bf1680cd8206a5e1ecfa68067dc7cafe0452d44247d82dc8337e
SHA512

43c9d9ebc6a7a3a85bd37ac34516b6ca9396a06ca33156b1620d13afdc2e95c0caec48d6498e2830753b4051b6328f8aa925383243ad2157a0e35d40f2e5a57f
SSDEEP

3072:8v5hm7VmBP7PtReQJUaMLgEE5RXbJpIUqTn:S5wAJyQJRMLgEaJpC

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  646355bc54c0bf1680cd8206a5e1ecfa68067dc7cafe0452d44247d82dc8337e_NeikiAnalytics.exe
- Size
  
  167KB
- MD5
  
  0840843d6f1bf862e59f067897ce68a0
- SHA1
  
  8bbc534e537dbf973d2a94ced384b060330c1f60
- SHA256
  
  646355bc54c0bf1680cd8206a5e1ecfa68067dc7cafe0452d44247d82dc8337e
- SHA512
  
  43c9d9ebc6a7a3a85bd37ac34516b6ca9396a06ca33156b1620d13afdc2e95c0caec48d6498e2830753b4051b6328f8aa925383243ad2157a0e35d40f2e5a57f
- SSDEEP
  
  3072:8v5hm7VmBP7PtReQJUaMLgEE5RXbJpIUqTn:S5wAJyQJRMLgEaJpC
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2