50a835510b75438a468fbb1b421eda5b1b7d81c6c206877d7a75bf3814b0a6c0 | Triage

Sharing

General

Target

50a835510b75438a468fbb1b421eda5b1b7d81c6c206877d7a75bf3814b0a6c0_NeikiAnalytics.exe
Size

50KB
Sample

240625-lw5h4awbql
MD5

c8896f014f3adc53078f739947eb9530
SHA1

45b56414249c05554f3c740ae8cbd988fc73648f
SHA256

50a835510b75438a468fbb1b421eda5b1b7d81c6c206877d7a75bf3814b0a6c0
SHA512

5e4bb91385843084c8e2434e2c9803a29ccd710b6d07b8747db68616d2753b7e0701cf5a40e07b39ca05e4ded7d1acae83dc0c204148d8da156225576958bf41
SSDEEP

768:B+JrFcne3edpBQrT2p4HqF3v/57jVKt8Nh0JVFbM7KKKOBO7IcnjPwC/1H5D42+j:4JCne3sATPqF/x7Ut8ijRMI+28

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  50a835510b75438a468fbb1b421eda5b1b7d81c6c206877d7a75bf3814b0a6c0_NeikiAnalytics.exe
- Size
  
  50KB
- MD5
  
  c8896f014f3adc53078f739947eb9530
- SHA1
  
  45b56414249c05554f3c740ae8cbd988fc73648f
- SHA256
  
  50a835510b75438a468fbb1b421eda5b1b7d81c6c206877d7a75bf3814b0a6c0
- SHA512
  
  5e4bb91385843084c8e2434e2c9803a29ccd710b6d07b8747db68616d2753b7e0701cf5a40e07b39ca05e4ded7d1acae83dc0c204148d8da156225576958bf41
- SSDEEP
  
  768:B+JrFcne3edpBQrT2p4HqF3v/57jVKt8Nh0JVFbM7KKKOBO7IcnjPwC/1H5D42+j:4JCne3sATPqF/x7Ut8ijRMI+28
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2