1b160e7f2509210452852ab0cea5fc88c6980b40ae5d17cd30cc1899c42c20ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b160e7f2509210452852ab0cea5fc88c6980b40ae5d17cd30cc1899c42c20ee_NeikiAnalytics.exe
Size

64KB
Sample

240625-2fgp4axfka
MD5

e2e4826da74c8171737c21aa77a51c80
SHA1

84f88153b289b36e7731f812b7d7e1dd3aa0b69d
SHA256

1b160e7f2509210452852ab0cea5fc88c6980b40ae5d17cd30cc1899c42c20ee
SHA512

8fd4e32558926cea30ebc1c56633e62296b7cec5e36e2db7881619b7caf574331cb19ac0a5bc6827dfaf4653c8d04d01285632717d7cf0a6dbb6e552e85373d4
SSDEEP

1536:9yHErKM9thBoj62VHHnn7a/I64IUXruCHcpzt/Idn:4aJ9mj6sHHn7ag6bpFwn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1b160e7f2509210452852ab0cea5fc88c6980b40ae5d17cd30cc1899c42c20ee_NeikiAnalytics.exe
- Size
  
  64KB
- MD5
  
  e2e4826da74c8171737c21aa77a51c80
- SHA1
  
  84f88153b289b36e7731f812b7d7e1dd3aa0b69d
- SHA256
  
  1b160e7f2509210452852ab0cea5fc88c6980b40ae5d17cd30cc1899c42c20ee
- SHA512
  
  8fd4e32558926cea30ebc1c56633e62296b7cec5e36e2db7881619b7caf574331cb19ac0a5bc6827dfaf4653c8d04d01285632717d7cf0a6dbb6e552e85373d4
- SSDEEP
  
  1536:9yHErKM9thBoj62VHHnn7a/I64IUXruCHcpzt/Idn:4aJ9mj6sHHn7ag6bpFwn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2