78171a34442a3a9d31a2ebf938a349a9e8e6e8c96f4fd236e5b25295de745ffa | Triage

Sharing

General

Target

78171a34442a3a9d31a2ebf938a349a9e8e6e8c96f4fd236e5b25295de745ffa_NeikiAnalytics.exe
Size

240KB
Sample

240627-lvg2eaxfmn
MD5

b8e259ddcde88ea61afe6d4b4d83a970
SHA1

57929ad67881e72e603c9952fb0b83af98117ad1
SHA256

78171a34442a3a9d31a2ebf938a349a9e8e6e8c96f4fd236e5b25295de745ffa
SHA512

2b0e082f5b07e9e034d84f3087992a0a310820853e7866a55df39ce6f89a3b78ebc8debcbbed53cae19e3a17fa45cba46ea36ef94fae3dbecafda1d67aa9a925
SSDEEP

3072:Tgk7zyYzQqAPgxed6BYudlNPMAvAURfE+Hxgu+tAcrbFAJc+RsUi1aVDkOvJ:Tgk7zyYzQqIyedZwlNPjLs+H8rtMs4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  78171a34442a3a9d31a2ebf938a349a9e8e6e8c96f4fd236e5b25295de745ffa_NeikiAnalytics.exe
- Size
  
  240KB
- MD5
  
  b8e259ddcde88ea61afe6d4b4d83a970
- SHA1
  
  57929ad67881e72e603c9952fb0b83af98117ad1
- SHA256
  
  78171a34442a3a9d31a2ebf938a349a9e8e6e8c96f4fd236e5b25295de745ffa
- SHA512
  
  2b0e082f5b07e9e034d84f3087992a0a310820853e7866a55df39ce6f89a3b78ebc8debcbbed53cae19e3a17fa45cba46ea36ef94fae3dbecafda1d67aa9a925
- SSDEEP
  
  3072:Tgk7zyYzQqAPgxed6BYudlNPMAvAURfE+Hxgu+tAcrbFAJc+RsUi1aVDkOvJ:Tgk7zyYzQqIyedZwlNPjLs+H8rtMs4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2