6445e95c93865f6ad0faca7f9918b4667bbdd2a19332d564916d118785631de5 | Triage

Sharing

General

Target

6445e95c93865f6ad0faca7f9918b4667bbdd2a19332d564916d118785631de5_NeikiAnalytics.exe
Size

96KB
Sample

240627-jameaayeje
MD5

4b6dd749d32ff5616fdc2923433fc7b0
SHA1

70c631dded22d68b364b4a96618b61183b0701de
SHA256

6445e95c93865f6ad0faca7f9918b4667bbdd2a19332d564916d118785631de5
SHA512

45981feb754d7efc50c7195bf4b6c00ce9bda7c353008168b22a012ad8a19625493802a6343caef9e0fc1f86059a5a606d1f8a060cbf055c087485c09ad37838
SSDEEP

1536:t8LR4lFnPdPmU4s9k+ydhNI3DZNy1p9Y9drGfzBne9MbinV39+ChnSdFFn7Elz4K:iLRul4s9k+ydklY1p9Y9tGtnAMbqV39t

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  6445e95c93865f6ad0faca7f9918b4667bbdd2a19332d564916d118785631de5_NeikiAnalytics.exe
- Size
  
  96KB
- MD5
  
  4b6dd749d32ff5616fdc2923433fc7b0
- SHA1
  
  70c631dded22d68b364b4a96618b61183b0701de
- SHA256
  
  6445e95c93865f6ad0faca7f9918b4667bbdd2a19332d564916d118785631de5
- SHA512
  
  45981feb754d7efc50c7195bf4b6c00ce9bda7c353008168b22a012ad8a19625493802a6343caef9e0fc1f86059a5a606d1f8a060cbf055c087485c09ad37838
- SSDEEP
  
  1536:t8LR4lFnPdPmU4s9k+ydhNI3DZNy1p9Y9drGfzBne9MbinV39+ChnSdFFn7Elz4K:iLRul4s9k+ydklY1p9Y9tGtnAMbqV39t
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2