2e87ea20b1c65b3d5132b77eb233b95d8c2dccf6fa69969a95a516f360b597b4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e87ea20b1c65b3d5132b77eb233b95d8c2dccf6fa69969a95a516f360b597b4_NeikiAnalytics.exe
Size

296KB
Sample

240627-2dhjlsvbmg
MD5

dcb77c1cb4432efc789952b89849f4c0
SHA1

1319f26dd7f1c06c6361569ed62a984a0a9df558
SHA256

2e87ea20b1c65b3d5132b77eb233b95d8c2dccf6fa69969a95a516f360b597b4
SHA512

c5ad5c7c1ffb21824925896de06271bee09f1bcc4eb8f42b874a820d429445ca7e4c681fb16c7adf8e9d143f29f57b974f28ef8c25c3c4941c39889040f5577c
SSDEEP

3072:9FF3p9Sh5TTBihljtdV3PI9evARA1+6NhZ6P0c9fpxg6pg:HjsXxih7dVfue5NPKG6g

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2e87ea20b1c65b3d5132b77eb233b95d8c2dccf6fa69969a95a516f360b597b4_NeikiAnalytics.exe
- Size
  
  296KB
- MD5
  
  dcb77c1cb4432efc789952b89849f4c0
- SHA1
  
  1319f26dd7f1c06c6361569ed62a984a0a9df558
- SHA256
  
  2e87ea20b1c65b3d5132b77eb233b95d8c2dccf6fa69969a95a516f360b597b4
- SHA512
  
  c5ad5c7c1ffb21824925896de06271bee09f1bcc4eb8f42b874a820d429445ca7e4c681fb16c7adf8e9d143f29f57b974f28ef8c25c3c4941c39889040f5577c
- SSDEEP
  
  3072:9FF3p9Sh5TTBihljtdV3PI9evARA1+6NhZ6P0c9fpxg6pg:HjsXxih7dVfue5NPKG6g
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2