37b40c0cdaa8be2151111a812404e815bad5ff2063c088616710e83e733f73de | Triage

Sharing

General

Target

37b40c0cdaa8be2151111a812404e815bad5ff2063c088616710e83e733f73de_NeikiAnalytics.exe
Size

768KB
Sample

240625-gl28rsxajk
MD5

ae12c9188923db05cf7f6b1d51bc00a0
SHA1

45e732174655f3f6cffc50158516f09b07e1f7fa
SHA256

37b40c0cdaa8be2151111a812404e815bad5ff2063c088616710e83e733f73de
SHA512

f7580eb388f4f66adc8d20c4f5a436d293d5086ddbab49dee78cada2c0c8c665ab0fa6da70b218294f9ba0b27f63ec3fef5d8b9ffb9b09d93959fb52724cccbc
SSDEEP

12288:+b9Yvw6IvYvc6IveDVqvQ6IvTPh2kkkkK4kXkkkkkkkkl888888888888888888d:u3q5hPPh2kkkkK4kXkkkkkkkkH

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  37b40c0cdaa8be2151111a812404e815bad5ff2063c088616710e83e733f73de_NeikiAnalytics.exe
- Size
  
  768KB
- MD5
  
  ae12c9188923db05cf7f6b1d51bc00a0
- SHA1
  
  45e732174655f3f6cffc50158516f09b07e1f7fa
- SHA256
  
  37b40c0cdaa8be2151111a812404e815bad5ff2063c088616710e83e733f73de
- SHA512
  
  f7580eb388f4f66adc8d20c4f5a436d293d5086ddbab49dee78cada2c0c8c665ab0fa6da70b218294f9ba0b27f63ec3fef5d8b9ffb9b09d93959fb52724cccbc
- SSDEEP
  
  12288:+b9Yvw6IvYvc6IveDVqvQ6IvTPh2kkkkK4kXkkkkkkkkl888888888888888888d:u3q5hPPh2kkkkK4kXkkkkkkkkH
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2