187731a73a1791ce8e0ba46ee34429eabb81f3c9114d906c622f4ab6c916d961 | Triage

Sharing

General

Target

187731a73a1791ce8e0ba46ee34429eabb81f3c9114d906c622f4ab6c916d961_NeikiAnalytics.exe
Size

109KB
Sample

240625-a3r1ssvakr
MD5

2a0a5d61e3194456b02ce2197e95c640
SHA1

852b798639f4def56dfc533e9852c6252accfb8e
SHA256

187731a73a1791ce8e0ba46ee34429eabb81f3c9114d906c622f4ab6c916d961
SHA512

f0eabc7934810c5efb12041a842850de299378b14da4357b4521eb691aef046a0c5d705a4150d1e9b05c252b97e0c3366ac81d950011a4e3542eb5b1e24a075b
SSDEEP

3072:1sRpfo50KgeUoBKAfWr8fo3PXl9Z7S/yCsKh2EzZA/z:1sRpfIgeDIuWrgo35e/yCthvUz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  187731a73a1791ce8e0ba46ee34429eabb81f3c9114d906c622f4ab6c916d961_NeikiAnalytics.exe
- Size
  
  109KB
- MD5
  
  2a0a5d61e3194456b02ce2197e95c640
- SHA1
  
  852b798639f4def56dfc533e9852c6252accfb8e
- SHA256
  
  187731a73a1791ce8e0ba46ee34429eabb81f3c9114d906c622f4ab6c916d961
- SHA512
  
  f0eabc7934810c5efb12041a842850de299378b14da4357b4521eb691aef046a0c5d705a4150d1e9b05c252b97e0c3366ac81d950011a4e3542eb5b1e24a075b
- SSDEEP
  
  3072:1sRpfo50KgeUoBKAfWr8fo3PXl9Z7S/yCsKh2EzZA/z:1sRpfIgeDIuWrgo35e/yCthvUz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2