2f84120aeaaeabc86ea74e525b1b2778c04da1a8775bc9aa7c5cc211ab27f14d | Triage

Sharing

General

Target

2f84120aeaaeabc86ea74e525b1b2778c04da1a8775bc9aa7c5cc211ab27f14d_NeikiAnalytics.exe
Size

72KB
Sample

240625-e5lzsazhpd
MD5

1a8d38f59de56d316c6ef546c4a13370
SHA1

0a617a339cacf805004732c7257bd9fbd3ac5cb7
SHA256

2f84120aeaaeabc86ea74e525b1b2778c04da1a8775bc9aa7c5cc211ab27f14d
SHA512

ff94bc990c894e729739878ef65f67d6a0973f28642b78feeb15d27e723a7df5192b24a750ba36f3b80da4bba1d05ebd6715aa7784602b686ece143495d37a20
SSDEEP

1536:wKc2i2FAS4kTRrujTNJy3CkPgUN3QivEtA:wDiFkkTRreTN03lPgU5QJA

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2f84120aeaaeabc86ea74e525b1b2778c04da1a8775bc9aa7c5cc211ab27f14d_NeikiAnalytics.exe
- Size
  
  72KB
- MD5
  
  1a8d38f59de56d316c6ef546c4a13370
- SHA1
  
  0a617a339cacf805004732c7257bd9fbd3ac5cb7
- SHA256
  
  2f84120aeaaeabc86ea74e525b1b2778c04da1a8775bc9aa7c5cc211ab27f14d
- SHA512
  
  ff94bc990c894e729739878ef65f67d6a0973f28642b78feeb15d27e723a7df5192b24a750ba36f3b80da4bba1d05ebd6715aa7784602b686ece143495d37a20
- SSDEEP
  
  1536:wKc2i2FAS4kTRrujTNJy3CkPgUN3QivEtA:wDiFkkTRreTN03lPgU5QJA
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2