169b9de6e97d0e55ef9dfbe9d25c679a47f264a24476a9f1fb6b64d45c73983e | Triage

Sharing

General

Target

169b9de6e97d0e55ef9dfbe9d25c679a47f264a24476a9f1fb6b64d45c73983e_NeikiAnalytics.exe
Size

1024KB
Sample

240625-1wxktaycnn
MD5

0c8d3cfbd94a69ae959006aeff53c0f0
SHA1

a3085955842da24b32a1a851aea47b8de265a44a
SHA256

169b9de6e97d0e55ef9dfbe9d25c679a47f264a24476a9f1fb6b64d45c73983e
SHA512

3a9d720e99538e9e454206d1cee2399fef1089e014cc393aa8009a81bfb831fa3eb8c4efbb018aaf6cf94cc120c8dea95e746966f5a6e12a5b8f5192ac1c4426
SSDEEP

12288:tP2YIQkY660fIaDZkY660f8jTK/XhdAwlt01PBExKN4P6IfKTLR+6CwUkEoH:teAgsaDZgQjGkwlks/6HnEO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  169b9de6e97d0e55ef9dfbe9d25c679a47f264a24476a9f1fb6b64d45c73983e_NeikiAnalytics.exe
- Size
  
  1024KB
- MD5
  
  0c8d3cfbd94a69ae959006aeff53c0f0
- SHA1
  
  a3085955842da24b32a1a851aea47b8de265a44a
- SHA256
  
  169b9de6e97d0e55ef9dfbe9d25c679a47f264a24476a9f1fb6b64d45c73983e
- SHA512
  
  3a9d720e99538e9e454206d1cee2399fef1089e014cc393aa8009a81bfb831fa3eb8c4efbb018aaf6cf94cc120c8dea95e746966f5a6e12a5b8f5192ac1c4426
- SSDEEP
  
  12288:tP2YIQkY660fIaDZkY660f8jTK/XhdAwlt01PBExKN4P6IfKTLR+6CwUkEoH:teAgsaDZgQjGkwlks/6HnEO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2