68fcf02cc93039127acc4b1a4530007b2ed8778e58e70b701f30332d6f620853 | Triage

Sharing

General

Target

68fcf02cc93039127acc4b1a4530007b2ed8778e58e70b701f30332d6f620853_NeikiAnalytics.exe
Size

217KB
Sample

240625-rchg4stgnf
MD5

b388da7e8a17025ebde4e484838b9920
SHA1

9a2181993cff471239aff2232f404f74f6a888b3
SHA256

68fcf02cc93039127acc4b1a4530007b2ed8778e58e70b701f30332d6f620853
SHA512

8f2595ec4e08612e5d45f57819cfd86bfbcd5ed18e529b6ccbc58efbe5d848977b4593b967d7de474fe9cf461eb3d20f7b80725b510d97868a632d021568b560
SSDEEP

6144:HdUQ0N9Tx9l3Eg+b/IEjXMu55of50o773GhDvz:96Trl0g+bIEpXov3GNr

Score

8^/10

persistence privilege_escalation

Malware Config

Targets

- Target
  
  68fcf02cc93039127acc4b1a4530007b2ed8778e58e70b701f30332d6f620853_NeikiAnalytics.exe
- Size
  
  217KB
- MD5
  
  b388da7e8a17025ebde4e484838b9920
- SHA1
  
  9a2181993cff471239aff2232f404f74f6a888b3
- SHA256
  
  68fcf02cc93039127acc4b1a4530007b2ed8778e58e70b701f30332d6f620853
- SHA512
  
  8f2595ec4e08612e5d45f57819cfd86bfbcd5ed18e529b6ccbc58efbe5d848977b4593b967d7de474fe9cf461eb3d20f7b80725b510d97868a632d021568b560
- SSDEEP
  
  6144:HdUQ0N9Tx9l3Eg+b/IEjXMu55of50o773GhDvz:96Trl0g+bIEpXov3GNr
Score

8^/10

persistence privilege_escalation
- Event Triggered Execution: AppInit DLLs
  Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
  persistence privilege_escalation
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

AppInit DLLs

Privilege Escalation

Event Triggered Execution

AppInit DLLs

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistenceprivilege_escalation

behavioral2

persistenceprivilege_escalation