7db5e49d1e5f2db849bb67e15a0e6796b941a48a9fc63fadd1ba93f395232b3f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7db5e49d1e5f2db849bb67e15a0e6796b941a48a9fc63fadd1ba93f395232b3f_NeikiAnalytics.exe
Size

2.7MB
Sample

240624-rdgbfayhqm
MD5

551b4d3b60144a8cc2503641920c51b0
SHA1

e2ba30fdf3f9e337e455047c894eb7fdfd8bbfbc
SHA256

7db5e49d1e5f2db849bb67e15a0e6796b941a48a9fc63fadd1ba93f395232b3f
SHA512

9103ae9e0a1cb931efbe8140799a0c901dc7e030c37f25fccf77e66a9d367df9d1f09506b8deee52db41e5ea73e6e685da5b11939ad748346c38dd2725eb9071
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LB69w4S+:+R0pI/IQlUoMPdmpSpw4X

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  7db5e49d1e5f2db849bb67e15a0e6796b941a48a9fc63fadd1ba93f395232b3f_NeikiAnalytics.exe
- Size
  
  2.7MB
- MD5
  
  551b4d3b60144a8cc2503641920c51b0
- SHA1
  
  e2ba30fdf3f9e337e455047c894eb7fdfd8bbfbc
- SHA256
  
  7db5e49d1e5f2db849bb67e15a0e6796b941a48a9fc63fadd1ba93f395232b3f
- SHA512
  
  9103ae9e0a1cb931efbe8140799a0c901dc7e030c37f25fccf77e66a9d367df9d1f09506b8deee52db41e5ea73e6e685da5b11939ad748346c38dd2725eb9071
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LB69w4S+:+R0pI/IQlUoMPdmpSpw4X
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2